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About This Guide 


Overview 


This guide describes system administration procedures involved in the day- 
to-day operation of your computer system. It tells how to use the sysadm 
menu system to perform most of these tasks. For system setup, configura- 
tion, and management procedures, refer to the System Administration Guide. 


Assumptions About the Reader 


This guide is intended for system operators using the sysadm menu system. 
It assumes the reader has a basic understanding of the operating system and 
has some knowledge of computer operations. 


Organization 


This guide contains two parts: a procedures section and an information sec- 
tion. Chapters P1 through P7 describe procedures (typically found on 
sysadm menus) that you can use to set up and maintain your system. Chap- 
ters 1 through 7 correspond to the procedures chapters and provide more de- 
tailed information. 


Notational Conventions 
The following notational conventions are used in this manual: 
_ © Filenames and user-defined parameters in text are shown in italics. 
¢ System output is shown in even-width font. 


¢ Commands in text and examples of input to be entered literally are 
shown in bold. 


¢ Environment variables are shown in bold upper- or lowercase. 


¢ When the name of a command or file is followed by a number in paren- 
theses, such as mv(1), the number refers to the section in the Reference 
Manual that contains the page describing that command or file. 
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Using sysadm 


This chapter introduces you to the sysadm menu system. It tells how to 
start up and exit the menu system, how to access the menu help messages, 
how to select menu items, and how to execute commands. As you read this 
chapter, it might be helpful to look at the menu system and try out some of 
its features. 


Starting Up sysadm 


To use the sysadm menu system, you must log in either as root or as 
sysadm. Then type sysadm, press (Return), and the System Administration 
Menu will appear. 


SYSTEM ADMINISTRATION 


diskmgmt disk management menu 
filemgmt file management menu 
machinemgmt machine management menu 
packagemgmt package management 
softwaremgmt software management menu 
syssetup system setup menu 
ttymgmt tty management menu 
usermgmt user management menu 


1 
2 
3 
4 
5 
6 
7 
8 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, q to QUIT: 


The System Administration Menu lists several other menus that contain sub- 
commands for related tasks. For example, the User Management Menu con- 
tains subcommands for maintaining user information and the TTY Manage- 
ment Menu contains subcommands for maintaining the TTY system. 
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Menu Help 


Help is available for each item on a menu. To see a help message, type the 
number corresponding to the item, followed by a question mark (?). Then 
press(Retum). For example, to see the help message for item 8, usermgmt, 
you would type 8?. 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, q to QUIT: 8? 


When you finish reading the help message, press(Retum) to go back to the 
menu. 


Leaving the Menu System 


When you finish working in the menu system, type q to exit to the shell 
prompt. 


Selecting Items from a Menu 


To select an item from a menu, type either the number corresponding to the 
item or the first few letters of the name. For example, to select the User Man- 
agement Menu, you could type either 8 or user. 


The submenu you selected then appears on the screen. To return to your pre- 
vious menu, type a caret (*). 


Most menus list one or more subcommands, as shown on the User Manage- 
ment Menu. 
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USER MANAGEMENT 


addgroup add a group to the system 

adduser add a user to the system 

delgroup delete a group from the system 

deluser delete a user from the system 

lsgroup list groups in the system 

lsuser list users in the system 

modadduser modify defaults used by adduser 

modgroup make changes to a group on the system 
moduser menu of commands to modify a user’s login 


iL 
2 
3 
4 
5 
6 
7 
8 
9 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, ~ to GO BACK, q to QUIT: 


from the System Administration Menu. You can type either the number cor- 
responding to the item or you can type the name (or the first part on the 
name) of the item. For example, to select the adduser item, you could type 
2, adduser, or addu. 


@ You can select an item from a submenu in the same way you select items 
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Executing a Subcommand 


When you select a subcommand from a menu, you start up a program that 
performs a task for you. Some subcommands simply print a report on your 
screen. For example, when you select the lsuser option, a list of the users on 
your system appears on your screen. 


Other subcommands print a series of prompts on the screen. These prompts 
ask for the information the system needs to execute the subcommand. For 
example, these prompts appear when you select the addgroup option. 


Enter group name [?,q]: 


Enter group ID number (default 100) [?,q]: 


At each prompt, type the appropriate response and press(Retum). If you make 
a typing error, press (BackSpace) to erase the character preceding the cursor. 


Many prompts have been assigned a default value. To accept the default val- 
ue, simply press (Return). 


If help is available for the prompt, a question mark follows the prompt, as 
shown on the previous screen. To see the help message, type ? and press 
If the prompt can be answered only by yes or no, the notation y, n 
follows the prompt. Type y or n as appropriate and press (Retum). 


If you decide not to complete the procedure, you can press q at any prompt to 
terminate the procedure. Then press (Return) to go back to the menu from 
which you selected the procedure. 


For many subcommands, when you finish answering the prompts, the system 
prints your entries on the screen. You can then edit your responses before 
the subcommand executes. 
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Bypassing the Menus 


You can execute any sysadm subcommand directly from the command line. 
First type sysadm, then type the subcommand. For example, to execute the 
adduser subcommand (found on the User Management Menu), you could en- 
ter this command: 


$ sysadm adduser 


If a password has been assigned to the sysadm command, you will be 
prompted to enter the password. The adduser prompts then appear, just as 
if you selected adduser from the menu. 


When the procedure completes, you will be returned to the shell command 
line. 


Special Subcommands 
The following sysadm commands can be used as logins: 
* bupsched 
e checkfsys 
¢ mountfsys 
¢ powerdown 
° setup 
¢ umountfsys 
You must log in at the console; the command executes after the login proce- 


dure completes. When the command finishes running, you will be returned to 
the console login: prompt. 


You can also execute these commands from the shell command line; it is not 
necessary to precede the command with sysadm. 


Typically, passwords are assigned to these commands. You will be prompted 
for the password when you execute the command either as a login or from the 
command line. 
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Chapter P1 
Identification and Security Procedures 


This chapter provides the procedures you'll need to manage your system’s 
identification and security setup. Chapter 1 in the second half of this guide 
contains more detailed information about identification and security issues. 


This chapter includes the following procedures: 
¢ Setting the time and date of the internal system clock 


¢ Defining the system and node names (a node name is necessary for ba- 
sic networking) 


e Assigning passwords to administrative and system logins 


P1.1 Set Time and Date 


Purpose To synchronize system time with clock time or to reset 
the system time after it has been corrupted 


Starting System state 

Conditions —multiuser to synchronize system time with cur- 
rent clock time 
—single-user to set the date ahead 


Login—root to use date(1) command to reset clock 


SYSTEM SETUP 
Commands sysadm datetime(1) 
date(1)—requires logging in as root 
Caution Go to single-user mode if you are setting the date 
ahead. 


Setting the date ahead by one or more days should be done in the single-user 
mode. Avoid setting the date ahead while the system is in multiuser mode 
and cron is running. If you set the date while cron is running, it will try to 
catch up for the time interval involved and will start up all processes sched- 
uled to run in the time interval. 
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When the operating system is booted, you might receive a reminder to set the 
time-of-day clock. This should happen infrequently. Setting the clock, how- 
ever, is normally required when you first receive the system. 


To set the time and the date, use the datetime option from the System Ad- 
ministration Menu. To accept a default value, simply press (Return). 


# sysadm datetime 


Running Subcommand ‘datetime’ from menu /syssetup’, 
SYSTEM SETUP 


Current time and time zone is: 04:59 EDT 
Change the time zone? [y, n, q, ?] n 
Current date and time: Tue. 08/28/85 05:00 
Change the date and time: [y, n, q, ?] y 
Month default 08 (1-12): 

Day default 28 (1-31): 

Year default 84 (70-99): 

Hour default 05 (0-23): 
Minute default 00 (0-59): 04 

Date and time will be set to: 08/28/84 05:04. OK? [y, n, ql y 
The date and time are now changed. 


You can also use the date command to reset the clock. You must be logged in 
as root to use this command and you must first take the system to single- 
user mode. The arguments to the date command are in this sequence: 
month, day, hour, minute, year. See date(1) for more information. 


# date 0216131686 
Sun Feb 16 13:16:00 EST 1986 
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P1.2 Establish or Change System and Node Names 


To define the system and node names 
Starting System state—multiuser or single-user 
Conditions Login—authorized login or root 
SYSTEM SETUP 


Commands sysadm nodename(1) 
uname -S—requires root login 


Caution Do not change system and node names arbitrarily. 
Changes must be coordinated with your networking 


connections. 


Chapter 7, “Basic Networking” 


There are three ways to set the system and node names: 


¢ Use the sysadm nodename command. 
¢ Use the uname command. 


¢ Reconfigure the operating system after changing the SYS and NODE 
tunable parameters. 


This section describes the first two methods. See the System Administration 
Guide for information about reconfiguring the operating system. 


P1.2.1 System Administration Menu—nodename 


The following screen shows an example of using the sysadm nodename 
command to set the node name. This command updates the /ete/rc.d/no- 
dename file, which stores the system and node names. When the system is 
rebooted, it reads this file to obtain the system and node names. You can use 
the cat command to read this file. 
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# sysadm nodename 
Running subcommand ‘nodename’ from menu ’syssetup’, 
SYSTEM SETUP 


This machine is currently called “mwa2” 


Do you want to change it? ly, n, ?, ql y 

What name do you want to give it? [q] ABcd5678 
# cat /etc/rc.d/nodename 

# Node name changed 02/01/86 14:55:49. 
uname -S ABcd5678 

# 


P1.2.2 Command—uname 


On the following screen, we used the uname command to print and to change 
the system and node names. (These names are usually the same.) The name 
you select can be up to eight characters long. 


# uname —a 
mwa2 mwa2 3.2.0 V1.0 i386 
# uname —S ABcd5678 


# uname -a 
ABcd5678 ABcd5678 3.2.0 V1.0 i386 
# 


The uname -s command does not edit the /etc/rc.d/nodename file, which 
stores the system and node names. When you use uname -s to set the sys- 
tem and node names, the names will be in effect only until the next system 
reboot. 
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P1.3 Assign Passwords to Administrative Logins 


Purpose To restrict access to various administrative and spe- 
cial system functions 

Starting Multiuser or single-user state, any login 

Conditions 


SYSTEM SETUP 


Commands sysadm admpasswd(1) 
sysadm syspasswd(1) 


Chapter 1, “System Security” 


After setting up your computer, you should assign passwords to the special 
administrative and system logins (see Chapter 1, “System Security,” for defi- 
nitions of these logins). The sysadm admpasswd command allows you to 
assign an initial password or to change an existing password for any of the 
administrative logins (setup, powerdown, sysadm, checkfsys, bupsched, 
mountfsys, and umountfsys). The following screen shows an example. 


# sysadm admpasswd 


Running subcommand ‘admpasswd’ from menu ‘syssetup’, 
SYSTEM SETUP 
Do you want to give passwords to administrative logins? y 


The login ‘sysadm’ already has a password. 

Do you want to change the password, delete it, or skip it? 
(Ga; Se Ge, 2) 8 

Password unchanged. 

The login ‘bupsched’ already has a password. 

Do you want to change the password, delete it, or skip it? 
[c, d, S, Ge 7] q 

Password unchanged. 

# 
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The sysadm syspasswd command allows you to assign an initial password 
to the root and nuucep system logins. You cannot use this command to 
change an existing password. When you run the syspsswd command, you 
must be logged in either as root or as one of the system logins. 


# sysadm syspasswd 

Running subcommand 'syspasswd’ from menu ‘syssetup’, 

SYSTEM SETUP 

Do you want to give passwords to system logins? [y, n, ?, ql y 
Do you want to give the ‘nuucp’ login a password? [y, n, ?, q] n 


The following system logins still do not have passwords: 
nuucp 
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User Services Procedures 


This chapter provides procedures you can use to maintain user and group in- 
formation and to broadcast messages to users. Chapter 2 in the second half 
of this manual contains more detailed information about users and groups 
and about communication services. 


This chapter includes the following procedures: 
¢ Adding new users or groups to the system 
¢ Changing information about existing users or groups 
¢ Removing users or groups from the system 
¢ Displaying information about users or groups 


¢ Broadcasting messages to users who are logged in 


P2.1 Add Users or Groups 


To identify new users or groups to the system 


Starting System state—multiuser 
Conditions 
USER MANAGEMENT 
Commands sysadm adduser(1) 
sysadm addgroup(1) 


Chapter 2, “User Services” 


To add a new user, run the sysadm adduser menu option. The following 


screen shows an example of this procedure. (Press(Return) to accept a default 
value appearing on the screen.) 
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Running subcommand ‘adduser’ from menu ‘usermgmt’, 
USER MANAGEMENT 


Any time you want to quit, type "q". 


If you are not sure how to answer any prompt, type "?" for help. 


If a default appears in the question, press <RETURN> for the default. 


Enter user’s full name [?, q]): John Q. Public 

Enter user's login ID [?, q]: jqp 

Enter user’s ID number (default 46145) [?, q]: 
Enter group ID number or group name 

(default 1)[?, aq]: 

Enter user’s login (home) directory name. 

(default ‘/usr/jqp’)[?, ql]: 


This is the information for the new login: 
User’s name: John Q. Public 
login ID: jap 
user ID: 46145 
group ID: ne 


home directory: /usr/jqp 
Do you want to install, edit or skip this entry [i, e, s, q]? i 
Login installed 
Do you want to give the user a password? [y, n] y 
New password: 
(Enter at least six characters, one of them a numeral.) 
Re-enter new password: 


Do you want to add another login?[y, n, q] n 
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To add a new group, use the sysadm addgroup command. The following 
screen shows an example of this procedure. 


Running subcommand ‘addgroup’ from menu ‘usermgmt’, 
USER MANAGEMENT 


Any time you want to quit, type "q". 
If you are not sure how to answer any prompt, type "?" for help. 


If a default appears in the question, press <RETURN> for the default. 


Enter group name [?, q]: seventy7 
Enter group ID number (default 45201) [?, q): 


This is the information for the new group: 


Group name: seventy? 

group ID: 45201 
Do you want to install, edit or skip this entry [i, e, s, q)? i 
Group installed 


Do you want to add another group?[y, n, q] n 
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P2.2 Modify User Information 


Purpose To change user information 


Starting System state—multiuser 


Conditions 


USER MANAGEMENT 


Commands sysadm modadduser(1) 
sysadm modgroup 
sysadm moduser(1) 
sysadm chgloginid(1) 
sysadm chgpasswd(1) 
sysadm chgshell(1) 


Chapter 2, “User Services” 


This procedure describes three functions: 


¢ Changing the default values that apply to the adduser sequence 
(modadduser) 


¢ Changing the name of a group (modgroup) 


¢ Changing user information (moduser) 


Changing Default Values for adduser 


The sysadm modadduser command allows you to change the default values 
for the group ID and home (parent) directory that appear on the adduser 
form. On the following screen, we changed the default group number from 1 
to 100. 
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Running subcommand ‘modadduser’ from menu ‘usermgmt’ 
USER MANAGEMENT 


Any time you want to quit, type "q". 
If you are not sure how to answer any prompt, type "?" for help. 


Current defaults for adduser: 

group ID 1 (other) 

parent directory /usr 

Do you want to change the default group ID? [y, n, ?, q]) y 
Enter group ID number or group name [?, q] 100 

Do you want to change the default parent directory? [y,n,?,q] n 


These will be the new defaults: 

group ID: 100 

parent directory: /usr 

Do you want to keep these values? [y, n, gq] y 
Defaults installed. 


Changing Group Information 


To change the information for a group, use the sysadm modgroup com- 
mand. The Modify Group Attributes Menu then appears on your screen. This 
menu allows you to change the name of the group. 
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Changing User Information 


To modify the information for a user login, run the sysadm moduser com- 
mand. The following menu then appears. 


MODIFY USER‘’S LOGIN 


1 chgloginid change a user’s login 
2 chgpassword change a user’s password 


3 chgshell change a user’s login shell 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, q to QUIT: 


When you select an item from this menu, you will see a prompt sequence that 
will help you make the required change. For example, when a user account 
is set up, a default shell program such as /bin/sh is assigned. The chgshell 
subcommand lets you assign a different shell. To use this subcommand, se- 
lect chgshell from the menu or enter the following command at the shell 
prompt: 


$ sysadm chgshell 


The following example assigns a restricted shell (/bin/rsh) to user jgp. (See 
Chapter 1 for more information about restricted shell programs.) 


Running subcommand ‘chgshell’ from menu ‘moduser’, 
MODIFY USER‘S LOGIN 


Enter user’s login ID [?, q]: jap 
The current shell is /bin/sh 
Enter new shell command([q]: /bin/rsh 


Do you want to change the login shell of another login?{y,n,q] q 
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P2.3 Delete Users or Groups 


Purpose To remove an inactive user from the system; to elimi- 
nate a group name that is no longer needed 
Starting System state—multiuser 
Conditions 
USER MANAGEMENT 
Commands sysadm deluser(1) 
sysadm delgroup(1) 


Caution When you delete a user ID, all files and directories 
owned by that user ID are also deleted. 


Chapter 2, “User Services” 


To delete a group ID, use the sysadm delgroup command. Following is an 
example of the sequence that appears on your screen: 


Which group name do you wish to delete?[q] seventy7 


Do you want to delete group name ‘seventy7’, group ID 45201?[y,n,?,q] y 


seventy? has been deleted 
Do you want to delete any other group?[y, n, q]) q 


The sysadm delgroup command deletes only the specified group; it does not 
delete the user logins assigned to that group. The logins belonging to the 
group must be deleted separately by using sysadm deluser. 
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The sysadm deluser command deletes a user login. The user’s home direc- 
tory and all files in and below that directory are also deleted. Here is an ex- 


ample: 


$ sysadm deluser 
Password: 


Running subcommand ‘deluser’ from menu ‘usermgmt’, 
USER MANAGEMENT 


This function COMPLETELY REMOVES THE USER, the mail file, home directory 
and all files below their home directory from the machine. 
Once this is done, there is no way guaranteed to get them all back. 

BE SURE THIS IS WHAT YOU WANT TO DO! 


Enter login ID you wish to remove[q]: jqp 
‘jqp’ belongs to ’John Q. Public’ 
whose home directory is /usr/jqp 
Do you want to remove login ID ‘jqp’?[y, n, ?, ql ¥ 


/usr/jqp and all files under it have been removed. 


Enter login ID you wish to remove [q]: q 
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P2.4 List Users or Groups 


To list the users or groups known to the system 


Starting System state—multiuser 


Conditions 


USER MANAGEMENT 
Commands sysadm Isuser(1) 
sysadm lsgroup(1) 
The two sysadm subcommands in this procedure enable you to look at the 


groups and users set up on the system. To see a list of the groups included on 
your system, use the following command: 


$ sysadm Isgroup 
Password: 


Following is an example of the report this command produces. 


Groups currently in the computer 
(press <RETURN> to start printing each time you hear the bell) 


group group logins permitted to become 
number members using newgrp 


root, adm, daemon 
root, bin,daemon 

daemon root,daemon 

mail root 

nuucp uucp 

other 

root root 

sys root,bin,sys,adm 
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Use the following command to see a list of users set up on your system: 


$ sysadm Isuser 
Password: 


Following is an example of the report this command produces. 


Users currently in the computer 
(press <RETURN> to start printing each time you hear the bell) 


login name user name 


Ann Corwin 
0000-Admin (0000) 
Alice Olson 
Betsy Alexander 
0000-Admin (0000) 
Bob Frelander 
George Capp 
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P2.5 Broadcast Messages to All Users 


Purpose To send urgent messages to all users logged in on the 
system 
Starting System state—multiuser 
Conditions | Login—root to prevent users from blocking messages 


wall(IM) 
Chapter 2, “User Services” 


The wall command allows you to communicate simultaneously with all users 
logged in on the system. To use this command, first become superuser, then 
type wall, press(Retum), and type the contents of your message. When you fin- 
ish your message, type (Ctrl-D). 

# wall 

System coming down in ten minutes. 


Please log off. 
# 


The message is sent immediately to each user’s terminal and is preceded by 
this line: 


Broadcast Message from ... 


A typical use of the wall command is to warn users that the system is about 
to be shut down. 


Broadcast Message from root: System coming down in 
ten minutes. Please log off. 
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This chapter contains the procedures you can use to remove power from the 
system and to change the system run level. Chapter 3 in the second half of 
this manual provides more detailed information about day-to-day operations 
and system run levels. 


This chapter describes the following procedures: 
¢ Removing power from the system 


¢ Bringing the system to the single-user state to perform administrative 
tasks 


e Returning the system to the multiuser state 


P3.1 Powerdown 


Starting Login—authorized user or root 
Conditions 


shutdowa(1M)—root login only 


The system must be in firmware mode when you turn off power to the sys- 
tem. To take the system to firmware mode, you can use the sysadm firm- 
ware command or the following procedure. 


To halt the system and turn off the power 


“Processor Operations” 


Step 1. Run the shutdown command as follows: 
shutdown -y -i0 -g0 
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The arguments have these meanings: 


-y Assume yes answers to all questions. 
-i0 Go to state 0 (firmware). 
-g0 Allow grace period of 0 seconds. 


Messages similar to the following then appear on the console. 


Shutdown started. 


The system will be shutdown in 0 seconds. 
Please log off now. 

THE SYSTEM IS BEING SHUTDOWN NOW ! ! ! 

Log off now or risk your files being damaged. 
The system is coming down. Please wait. 


The system is down. 


Step 2. You can now turn off the power to the system. 
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P3.2 Shutdown to Single-User 


Purpose To perform administrative tasks that should be done 
when no other users are on the system 


Starting System state—multiuser 


Conditions | Login—root 


shutdown(1M) 


Chapter 3, “Processor Operations” 


Many tasks such as unmounting filesystems must be performed when the sys- 
tem is in single-user mode. Because only the console has access to the system 
in the single-user state, try to schedule tasks requiring single-user state for 
off hours. 


Step 1. Log in as root at the console. 


Step 2. Enter this command: 


@ # shutdown 


By default, shutdown offers prompts about the broadcast messages, pro- 
vides a 60-second grace period between each message, and brings the system 
to the single-user state. When the system reaches the single-user state, you 
will see the following message: 


INIT: SINGLE USER MODE 


You can now proceed with your administrative tasks. 
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P3.3 Return to Multiuser 


To make the system available to users 
Starting System state—single-user 
Conditions | Login—root 
Commands | init(1M) 
/unix (boot program) 
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You can bring the system back to multiuser mode from either the single-user 
state or the firmware mode, or you can cause the system to immediately halt 
and reboot. This procedure tells how to return to multiuser state from the 
single-user state. 


After you finish your administrative tasks, you can use the init command to 
bring the system back to the multiuser state. At the console, enter this com- 
mand: 


# init 2 
This causes init to inspect /etc/inittab and to execute entries that initialize 


the system to the multiuser state. The following messages appear on your 
screen: 


INIT: New run level: 2 


The system is coming up. Please wait. 


The operating system checks your filesystems and prints the current system 
configuration followed by this message: 


The system is ready. 


Console Login: 


The system is now in the multiuser state and you can log in either as root or 
as a conventional user. 
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This chapter contains procedures you can use to maintain filesystems and to 
monitor disk use. Chapter 4 in the second half of this chapter contains more 
detailed information about filesystem maintenance. 


This chapter includes the following procedures: 
¢ Mounting and unmounting filesystems 
¢ Checking and repairing filesystems 
¢ Monitoring disk space use 
¢ Backing up files 
¢ Restoring files 


NOTE 


Some variation in these procedures can occur depending on the 
configuration of your system. 
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P4.1 Mount or Unmount Filesystems 


To bring a filesystem under operating system control 
(mount), or to release it so it can be removed from 
the system (unmount). 


Starting System state—multiuser to mount filesystems; single- 
Conditions user to unmount filesystems 


DISK MANAGEMENT 


Commands sysadm mountfsys 
sysadm umountfsys 


Chapter 4, “Filesystem Administration” 


This procedure includes the sysadm mountfsys and sysadm umountfsys 
commands, which are used to make filesystems available for use or to remove 

them from use. Because most standard filesystems are automatically mount- 

ed and unmounted during the startup and shutdown procedures, you seldom 

have to use these commands. & 


If you want to mount a filesystem that has already been created, select 
mountfsys from the Disk Management Menu (type sysadm diskmgmt to 
see this menu). Then answer the questions that appear on the screen. You 
will first be asked if you want to mount the filesystem “read-only,” which pre- 
vents anyone from writing to the filesystem or changing the data it contains. 
You will then be asked to select the drive partition containing the filesystem. 
To see a list of available drive partitions, type a question mark (?). 


If you want to unmount a filesystem, select umountfsys from the Disk Man- 
agement Menu. Then select the partition containing the filesystem to be un- 
mounted. 


The umount(1M) command can also be used to unmount filesystems. How- 
ever, you should not use this command if the filesystem was mounted with 
mountfsys. 
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P4.2 Maintain Filesystems 


Purpose 


When 
Performed 


Starting 
Conditions 


To check and possibly repair filesystems; to check disk 
space usage in order to provide adequate resources to 
users 


Before mounting the filesystem; on a schedule appro- 
priate for your circumstances 


System state—multiuser or single-user 


For checking, the filesystem must NOT be mounted; 
for other maintenance, the filesystem must be mount- 
ed 


To run this procedure in single-user mode, you must 
execute mount /usr 


sysadm menus | FILE MANAGEMENT — 
DISK MANAGEMENT 
Commands sysadm checkfsys(1) 
sysadm diskuse(1) 


sysadm fileage(1) 
sysadm filesize(1) 


Chapter 4, “Filesystem Administration” 


P4.2.1 Filesystem Checking 


This menu option runs the fsck command. For more information about fsck, 
refer to Chapter 4. For a list of fsck error messages and corrective actions, 
see the Error Messages manual. 

Step 1. Enter this command: 


$ sysadm checkfsys 
Password: 


Step 2:. Select the appropriate drive and press (Return). 
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Step 3. When you are asked, specify the type of checking to be performed: 


Select: 
check 
interactive 
automatic 

[ey dy By “a, FIs 


¢ Ifyou select check, the command reports any errors detected, but does 
not fix them. 


¢ Ifyou select interactive, the command asks you to approve or disap- 
prove fixes to errors. (You will see a message on your screen that de- 
scribes the error and asks for a yes or no response.) 


e Ifyou select automatic, the command automatically fixes errors. 
Following your response, file checking proceeds. When the check is complete, 
a message like this appears: 


27 files 94 blocks 1266 free 
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P4.2.2 Monitoring Disk Usage 

The second part of the filesystem maintenance procedure involves making 
sure that enough space is available on disk to accommodate user needs. 
Step 1. Enter this command: 


$ sysadm diskuse 
Password: 


A display similar to the following then appears on your screen: 


FILE SYSTEM USAGE AS OF 05/04/86 13:23:30 
File Free Total Percent 
System Blocks Blocks 


351052 


If you want more detailed information about your filesystems, you can use the 
fileage and filesize commands. 
Step 2:. Type the fileage command as follows: 
$ sysadm fileage 
This command prompts you for two pieces of information: 


¢ The full pathname of the directory to be searched. It is important to be 
specific in your response. If you select a high-level directory such as 
/usr, you will receive a great deal more information than you want. 


¢ The number of days to go back; files older than the number of days you 
specify will be reported. The default is 90 days. 


Step 3. Type the filesize command: 
$ sysadm filesize 


This command locates information about the n largest files (default is 10) in 
the directory you specify. The information includes the owner of the file, the 
number of characters in the file, the date it was last accessed, and its name. 
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P4.3 Filesystem Backup and Restore 


To store filesystems or parts of filesystems in order to 
guard against loss of data and to free up space on the 
disk 


When On a schedule developed to fit the needs of your sys- 
Performed tem 


Starting System state—single-user 

Conditions You must execute mount /usr to run this procedure 
in single-user mode. 

Login—root 


FILE MANAGEMENT 


Commands sysadm backup(1) 
sysadm store(1) 
sysadm restore(1) 
sysadm bupsched(1) 
mount(1M) 


Tapes in enough quantity to hold the files or filesys- 
tems you are backing up. 
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P4.3.1 Complete Backup 
Step 1. Log in as root. 


Step 2. Take the system to the single-user mode (run-level S or 1); see Pro- 
cedure P3.2, “Shutdown to Single-User.” 


Step 3. Use mountall to mount all of your filesystems. 


Step 4. Enter this command: 
# sysadm backup 


Because you logged in as root, you are not prompted for the sysadm pass- 
word. Next, answer the questions that appear on the screen: 
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Enter file system(s) you want to backup [q, ?]: /usxr2 
Select complete or incremental backup [c, i, q, ?]: ¢ 
Print each file name as it is copied? [q,?] ly, n, q ?]: y 


Select which drive to use: 


Enter a number, a name, the initial part of a name, or 
? for HELP, q to QUIT: 


Before inserting the first part into the drive, mark it: 


Complete Backup of /usr2, 
Sat. 09/08/84, 05:08:31 AM 
Part 1 


Insert the medium in the drive. Press <RETURN> when ready. [q] 
(If you asked for filenames to print, they will appear here.) 


2) Reached end of medium on output. 


Remove medium. 
Before inserting the next part into the drive, mark it: 


Complete Backup of /usr2, 
Sat. 09/08/84, 05:28:31 AM 
Part 2 


Insert the medium in the drive. Press <RETURN> when ready. [q) 
(If you asked for filenames to print, they will appear here.) 
Reached end of medium on output. 


(Process continues until copying is complete) 
13089 blocks 


Complete backup of /usr2 has finished. 
You may now remove the medium. 
# 
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Step 5. Label each tape used for the backup. Include a sequence number as 
part of the label (such as Part 1, Part 2, and so on). 


Step 6. Return the system to the normal operating configuration (see Proce- 
dure P3.3, “Return to Multiuser”). 


P4.3.2 Incremental Backup 


Incremental backups can be used after an initial full backup has been done. 
See the discussion on backup strategies in Chapter 4. 


Step 1. Log in as root. 
Step 2. Take the system to the single-user mode (run-level S or 1). 
Step 3. Use mountall to mount all of your filesystems. 


Step 4. Execute the System Administration backup command 
(sysadm backup) and follow the instructions that appear on your screen. 


Step 5. Label the medium as indicated in the instructions. 


Step 6. Return the system to the normal operating configuration (see Proce- 
dure P3.3, “Return to Multiuser”). 
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# sysadm backup 
Running subcommand ‘backup’ from menu ’filemgmt’, 
FILE MANAGEMENT 


Available file systems: 

/ /usr /usr2 ALL 

Enter file system(s) you want to backup [q, ?]: /usr2 
Select complete or incremental backup [c, i, q, ?]: 4 
Print each file name as it is copied? [q, ?] ly, n, q, 


Select which drive to use: 


Enter a number, a name, the initial part of a name, or 
? for HELP, q to QUIT: 


Before inserting the tape into the drive, mark it as follows: 


Incremental Backup of /usr2, 
Sat. 09/08/84, 05:08:31 AM to 
Sat. 09/08/84, 07:04:21 AM 
Part 1 
Insert the medium in the drive. Press <RETURN> when ready. [q] 
/usr2/abc/£i101 


83 blocks 


Incremental backup of /usr2 has finished. 


You may now remove the medium. 
# 
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P4.3.3 Back Up Specific Files 
Step 1. Log in as root. 


Step 2. Take the system to the single-user mode, run-level S or 1 (see Proce- 
dure P3.2). 


Step 3. Use mountall to mount all of your filesystems. 


Step 4. Enter this command: 
# sysadm store 


Select the appropriate device, then follow the prompts that appear on your 
screen. 


Running subcommand ‘store’ from menu ‘filemgmt’, 
FILE MANAGEMENT 


1. Select a single file for storing 
2. Select all files under a directory for storing 
Enter a number: 1 
Enter full path name of file to be stored [q]: /usr/abc/filel 


. Select a single file for storing 
.» Select all files under a directory for storing 
. List files selected so far 
4. Store selected files 
Enter a number: 4 


1 files selected 
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Step 5. Each time you provide a file or directory name, the system prompts 
you either to enter more names, to review what has been entered, or to pro- 
ceed with the storing process. When you have specified all files to be stored, 
enter 4. You will see a display similar to the following. 


Files stored on: 

Sat 05/04/85, 03:18:53 PM 
part 1 

/usr/abc/filel 

28 blocks 


Store complete. 
Do you want to verify that your file(s) were stored properlyly,n,q,?] y 
PLEASE NOTE: 


To verify that the store worked properly, you must 


re-insert all parts that were just written to, starting with "part 1" 
Insert the medium. Press <RETURN> when ready. 

Verification complete. You may remove the medium. 

Should the stored files be removed from the disk[y,n,q, ?] 


The last question gives you a chance to delete the files you backed up. You 
would probably elect to do that if you were in the process of freeing up stor- 
age space. 


Step 6. Return the system to the normal operating configuration. 
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P4.3.4 Restore Files 
Step 1. Log in as root. 


Step 2. Take the system to the single-user mode (run-level S or 1). 
Step 3. Use mountall to mount all of your filesystems. 


Step 4. Enter this command: 
$ sysadm restore 


Follow the instructions that appear on your screen. (The following page 
shows an example.) 


When restoring from a complete or incremental backup, all tapes of that se- 
ries must be loaded. Even if you intend to restore only a single file, all tapes 
of the backup series must be loaded in sequence. 


Step 5. Return the system to the normal operating configuration (see Proce- 
dure P3.3, “Return to Multiuser”). 


Step 6. Store the backup tapes in a safe place. 
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# sysadm restore 


Running subcommand ‘restore’ from menu ‘filemgmt’ 
FILE MANAGEMENT 


Select which drive to use 


Enter a number, a name, the initial part of a name, or 
? for HELP, q to QUIT: 2 


Select: 
restore a single file 


L 
2. restore a directory of files 
3 


- restore all files 

4. list all the files 
Enter a number [q,?]: 1 
Insert the medium in the drive. Press <RETURN> when ready. 
Enter full path name of file(s) to be restored [q, ?]: /usr/abc/filel 
Do you want to rename the file as it is copied in? [y, n, ql]: y 
WARNING: 
Be very careful when you rename a file. Files incorrectly named 
by typing errors are difficult to find and repair. 
Remember that only the first 14 characters of each part of the 
file name (i.e. the characters between the "/"s) are significant. 


(You will be asked to rename each file in turn. Press to skip a file. 
Type a dot (.) to restore a file with its original name.) 


Rename </usr/abc/filel> 
/usxr/abc/datafile3 


83 blocks 


Restoration complete. 
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P4.3.5 Backup Schedule Reminders 


You can use any authorized login to carry out this procedure. 


Step 1. Enter this command: 


$ sysadm bupsched 
Password: 


The following menu appears on your terminal. 


BACKUP REMINDER SCHEDULING 


1 schedcheck schedule backup reminder checks 


2 schedmsg schedule backup reminder message 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, q for QUIT: 


Step 2. To schedule a reminder message to be sent to the system console 
during shutdown, enter 2. The following message appears on your terminal. 


Enter the command you wish to execute [p, r, a, mM, WwW, q, ?]: 


Type ? to see your choices for this prompt: 


p - Print lines of the file 

x - Remove a line or group of lines 
a - Add a line 

m - Modify a line 

w - Write the changes into the file 
q - Quit - Leave bupsched 


The file referred to contains reminder messages and the schedule for sending 
the messages to the system console. 


Step 3. Enter a to adda line. The following sequence of prompts occurs: 
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Enter time intervals in which backup reminder messages are to be printed 
{q, ?]: 16:00-18:00 


(The time interval must be entered with no blanks.) 


Enter time intervals in which backup reminder messages are’ to be printed 
la, 7]: q 


(Many prompts in this sequence are repeated to let you enter additional information. 
When you are ready to go to the next prompt, press q.) 


Enter the day of the week [0-6, *, q, ?): * 


(The asterisk (*) means you want to schedule the message to appear every day. 
Day 0 is Sunday.) 


Enter the day of the month [1-31], *, q, ?]: 15 

(The 15 means you want to schedule the message to appear on the 15th of the 

month, This modifies the Day-of-the-Week schedule to mean any day that is the 15th 
of the month.) 


Enter the day of the month [1-31, *, q, ?]: q 


(The prompt is repeated to let you enter additional days for this message to be 
scheduled. Type q to end the sequence.) 


Enter the month (1-12, *, q, ?]: * 


(The asterisk (*) means you want to schedule the message to appear every month.) 


Enter the file system you wish to backup [q, ?]: /usr2 

(The name must start with a slash (/). The prompt will re-appear until you enter q.) 
Enter the command you wish to execute [p, r, a, m, W, q, ?]: Ww 
(The w tells the system to add your entry to the file of reminder messages.) 


Enter the command you wish to execute [p, r, a, m, W, Gq ?]: 
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The sequence is over. You can exit with a q or choose another function. 


Step 4. To see all scheduled reminder messages, type p. A display similar to 
the following then appears on your terminal. A pound sign (#) at the begin- 
ning of a line means that line is interpreted as a comment when the file is ex- 
ecuted. 


# 
# Format of lines 
# 
#time day month list 
# 
# time - time(s) of day (24hr or am/pm) 
# day - day(s) of week (mon, tue, etc) 
# day(s) of month (1,2,...first, last) 
# month - month(s) of the year (jan, feb,...) 
# list - list of file systems to be backed up 
# or command to be executed ( !command line) 
# 
# Example: 
# 
#16:00-18:00 mon * /usr 
# 
# If ckbupscd is invoked between 4:00 and 6:00 in the 
# evening on mondays during any month of the year, 
# display /usr as the name of a file system that needs 
# to be backed up. 
# 
$esesssseane sess reas SS ssSS sess sSSsaaSaSsssSsssses= 
# 
# Default backup schedule calls for daily backups of /usr 
# and monthly backups of root (/) on the 15th of each month. 
# 

1 0:00-8:00,16:00-23.59 mon,tue,wed,thu,fri * /usr 

2 4pm-llpm 15 bs / 

3 16:00-18:00 15 2 /usr2 

(Line 3 in the list is the line you just added.) 
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Step 5. Once there are reminder messages in the file, you can use 
schedcheck (selection 1 from the bupsched menu) to schedule checks for 
reminder messages. Reminder messages are sent to the console if shutdown 
occurs during the time interval specified in the file. 


Schedule check is an added protection in case a shutdown does not take 
place during the specified time interval. It looks for messages that would 
have been sent if a shutdown had occurred. The prompt sequence is similar 
to the one shown earlier. 
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This chapter provides procedures you can use to manage the LP print service. 
Chapter 5 in the second half of this guide contains more detailed information 
about the print service. 


This chapter includes the following procedures: 
¢ Stopping the LP print service 
¢ Restarting the LP print service 
e Adding or deleting a printer 
¢ Changing a printer configuration 
¢ Adding, changing, or deleting a form 
e Adding, changing, or deleting a filter 


P5.1 Stop the Print Service 


To stop the print service 


Starting Con- | Multiuser or single-user state 

ditions (If the system is in single-user state, you must run the 
command mount /usr before following this proce- 
dure.) 

Login—root 


sysadm packagemgmt/lpmgmt/service/stop 
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Enter the following command to stop the print service: 
$ sysadm stop 


This command stops the print service completely. A screen message appears 
when the print service has stopped; no further requests for printing will be 
processed. 
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P5.2 Restart the Print Service 


To make the LP system available again 


Starting Con- Multiuser or single-user state 
ditions (If the system in single-user state, you must run the 
command mount /usr before following this proce- 


dure.) 
Login—root 


sysadm packagemgmt/lpmgmt/service/start 
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When you are ready to restart the print service, enter the following com- 
mand: 


$ sysadm start 


A message appears on the screen when the print service is available again. 
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P5.3 Set Up the Print Service 


This section tells how to add a printer to the print service, how to change a 
printer configuration, and how to delete a printer from the print service. Be- 
fore you can carry out these procedures, the printer must be connected to an 
available port. 


You should also make sure the system can communicate with the printer. As 
a test, use the cat command to send a file to the printer. Although the file 
might not print properly, this step confirms that your system and the printer 
can communicate. 


Purpose To add or delete a printer from your system or to change 
a printer’s configuration 


Starting Multiuser or single-user state 

Conditions | (If the system is in single-user state, you must run the 
command mount /usr before following this procedure.) 
Login—root 


Commands | sysadm packagemgmt/pmgmt/printers/add_p 
sysadm packagemgmt/lpmgmt/printers/change_p 
sysadm packagemgmt/lpmgmt/printers/accept_p 
sysadm packagemgmt/lpmgmt/printers/enable_p 
sysadm packagemgmt/lpmgmt/service/default 
sysadm packagemgmt/lpmgmt/printers/reject_p 
sysadm packagemgmt/lpmgmt/printers/disable_p 
sysadm packagemgmt/pmgmt/printers/delete_p 
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Reference 


P5.3.1 Add a Printer 

To add a printer to the LP print service, complete the steps outlined in this 

section. 

Step 1. To specify the printer’s configuration, enter the following command: 
$ sysadm printers/add_p 


If other printers have already been added to the system, you will be asked if 
the printer you are now adding is similar to any of them. If it is, the confi- 
guration for the similar printer can be used as a template for configuring the 
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new printer. If there is not a similar printer, the system will supply standard 
defaults for the printer configuration. You can accept or change any of the 
default values. A sample printer configuration follows. 


(If you define the alert-type for the printer to be mail or write and do not 
specify a login, the login sysadm will be assumed.) 


Enter the name of the new printer: printer2 

Is this printer to be similar to one already added? [y, n, ?, q] n 
Printer class to add it to: (default: none) letterquality 

Enter one line that describes the printer for your users. 

(default: none) daisy-wheel printer 

Type of printer: (default: unknown) 455 

Types of files printable without filtering: 

(default: simple) simple,nroff 


Printer interface to use: (default: standard) /usr/kol/interface 
Can a user skip the banner page? (default: no) [y, n, ?, q] 


Use the default page size and printing pitch? (default: yes) [y, n, ?, q] 


Enter a command to run to alert you when the printer faults. 
(default: mail lp) write lp 

How often should you be alerted (minutes, O=once)? (default: 0) 3 
How should printing restart after you fix a printer fault? 
(default: continue) 


Is the printer directly connected? (default: yes) [y, n, ?, q) 
Printer port to use: /dev/ttyGA/GAAH 
Is the printer also a login terminal? (default: no) ly, n, ?, q) 


The default port settings will be: 
9600 cs8 

estopb -parenb -parodd 

ixon -ixany 

epost -olcuc onler -ocrnl -onocr -onlret 

-ofill n10 cr0 tabO bsO vtO f£f0 
Enter any changes or additional settings that must be in 
effect: 


List the print wheels available: 
(default: none) elite, courier 
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List the users who are denied access to this printer. 
(default: none) 

List the users who are allowed access to this printer. 
(default: all) merlyn ehr3 glg 


List the forms that can be used with this printer. 
(default: none) payroll_check, order_form 


install, edit, or skip this printer entry: (default: install) 
If you have trouble defining a value for a field, be sure to read the help mes- 


sages and look for further details in Chapter 5 of this guide. 


When you finish this session, the printer you defined will be added to the LP 
print service. Next, you must tell the print service that the printer can ac- 
cept print requests into its queue. You must also enable the printer so that it 
can print the requests. 


Step 2. To tell the print service to accept print requests for the printer you 
added, enter the following command: 


$ sysadm printers/accept_p 
You will be asked to list the printers or printer classes that can begin accept- 
ing print requests. 


Step 3. When you are ready to start printing, be sure that the printer is 
ready to receive output. For some printers, this means the top of the form 
has been adjusted and that the printer is online. To allow printing to occur 
on the printer, enter the following command: 


$ sysadm printers/enable_p 
You will be asked to list the printers that can begin printing requests. 
Step 4. (This step is optional.) Set the default destination for print requests 
by entering the following command: 

$ sysadm default ; 
You will be asked to name the printer or printer class that is to be used as 
the default destination for print requests. 
Step 5. Enter the following command to verify that the new printer has been 
added according to your specifications and that its configuration is correct. 


$ sysadm printers/list_p 
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This command prompts you for the names of printers for which you want to 
see a configuration listing. If you specify all, you will receive a configuration 
listing of all available printers, including the one you just added. 


P5.3.2 Change a Printer Configuration 


When you change a printer configuration, keep in mind that print requests 
sent to that printer can also be affected. 


To safeguard existing print requests, consider taking either or both of the fol- 
lowing steps before you change the configuration of a printer or remove it 
from the print service: 


¢ Tell the printer to reject print requests. 

¢ Disable the printer. 
When you are satisfied that no jobs are in danger of being ruined and no new 
jobs will be queued for the affected printer, you can delete the printer or 


change its configuration. The procedures for these precautionary measures 
are given in Steps 1 and 2. 


Step 1. (This step is optional.) To tell a printer to stop accepting print re- 
quests, enter the following command: 


$ sysadm printers/reject_p 


You will be asked to specify the printers or printer classes that are to reject 
print requests. You can also specify the reason the printer is not accepting 
print requests. 


Step 2. (This step is optional.) To disable a printer, enter the following com- 
mand: 
$ sysadm printers/disable_p 


You can preserve or delete the current print request before the specified 
printer is disabled. The following screen shows an example. 
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Enter the names of the printers that should stop printing requests. 
Separate multiple names with a space or comma. 
(default: printer2) 


Cancel any requests currently printing? (default: no) [y, n, ? 
Wait for any requests currently printing? (default: no) [y, n, ?, q] yes 


Reason for disabling: 
(default: none) to reconfigure printer2 


The printer specified as the default on this screen is printer2 because it 
was the last printer added to the system with the add command. (This print- 
er is the default for this menu option; this does not mean it is the default sys- 
tem printer.) If no printers have been added in this way, the default value 
willbe none. 


Step 8. This step tells how to change the configuration of printer. Begin by 
entering the following command: 


@& $ sysadm printers/change_p 


You will then be asked to specify the printer and to make any configuration 
changes. The screen on the following page shows a example sequence. The 
steps are the same as the steps you followed to add a new printer. (If you de- 
fine the alert-type for the printer to be mail or write and do not specify a lo- 
gin, the login sysadm will be assumed. You cannot specify the alert-type 
quiet.) 
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Enter the name of the printer: (default: printer2) 

Printer class to add it to: (default: letterquality) 

Enter one line that describes the printer for your users. 

(default: AT&T Model 455 daisy-wheel printer) 

Type of printer: (default: 455) 

Types of files printable without filtering: (default: simple, nroff 


Printer interface to use: (default: /usr/kol/interface) 
Can a user skip the banner page? (default: no) [y, n, ?, q] 


Use default page size and printing pitch? (default: yes) [y, n, ?, q] 


Enter a command to run to alert you when the printer faults. 


(default: write lp) 

How often should you be alerted (minutes, O=once)? (default: 3) 10 
How should printing restart after you fix a printer fault? 
(default: continue) 


Is the printer directly connected? (default: yes) [y, n, ?, q] 
Printer port to use: (default: /dev/ttyGA/GAAH) 
Is the printer also a login terminal? (default: no) 


The default port settings will be: 
9600 
es8 cstopb -parenb -parodd 
ixon -ixany 
opost -olcuc onler -ocrnl -onocr -onlret 
-ofill nl0 crO tab0 bsO vtO ff0 
Enter any changes or additional settings that must be in 
effect: (default: as listed above) 


List the print wheels available: 
(default: elite, courier) 


List the users who are denied access to this printer. 
(default: none) 

List the users who are allowed access to this printer. 
(default: merlyn ehr3 glg) jwoo 


List the forms that can be used with this printer. 
(default: payroll check, order_form) 


install, edit, or skip this printer entry: (default: install) 
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Step 4. To tell the printer to accept print requests, enter this command: 
$ sysadm printers/accept_p 


Step 5. The printer must be reenabled to allow it to print. Enter the follow- 
ing command: 


$ sysadm printers/enable_p 
You will be asked for the names of printers that can start printing requests. 
Step 6. (This step is optional.) To define a default destination for print re- 
quests, enter the following command: 

$ sysadm default 
You will be prompted for the name of the printer or printer class that is to be 
used as the default destination for print requests. 
Step 7. The reconfiguration of your printer is now complete. If you want to 
verify that the configuration is correct, enter the following command: 

$ sysadm printers/list_p 


This command prompts you for the names of printers for which you want to 
see a configuration listing. If you specify all, you will receive a configuration 
listing of all available printers, including the one you have just changed. 
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P5.3.3 Delete a Printer 


Before deleting a printer from the print service, you should either tell the 
printer to reject print requests or disable it. These procedures are described 
in the previous section. When you are ready to delete the printer, enter the 
following command: 


$ sysadm printers/delete_p 


You will be asked to name the printer to be deleted. After you specify a 
name, the message Are you sure? appears. This message allows you to 
make sure you are removing the correct printer. 


To verify that the appropriate printer has been deleted, enter the following 
command: 


$ sysadm printers/list_p 


This command prompts you for the names of printers for which you want to 
see a configuration listing. If you specify all, the configuration should no 
longer include the printer you deleted. 
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P5.4 Set Up Forms 


To add, change or delete a form for the print service 


Starting Multiuser or single-user state 

Conditions | (If you are in single-user state, you must run the com- 
mand mount /usr before following this procedure.) 
Login—root 


Commands | sysadm packagemgmt/lpmgmt/forms/add_f 
sysadm packagemgmt/pmgmt/forms/change_f 
sysadm packagemgmt/pmgmt/forms/delete_f 
sysadm packagemgmt/Ipmgmt/forms/mount_f 
sysadm packagemgmt/lpmgmt/forms/list_f 
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P5.4.1 Using Forms 


Many printers can print on a variety of pre-printed forms such as checks and 
invoices. The LP print service can help you take advantage of this capability, 
but you must supply additional software, as well as the forms. Once you have 
all of the necessary components in place, the LP print service can help you 
use your forms and the supporting software in the following ways: 


e The print service can schedule the work of one or more printers, allow- 
ing you to print specific forms on specific printers at certain time peri- 
ods. (If you have only one printer, the scheduling service allows you to 
allocate its time among multiple forms.) 


¢ The print service can keep track of forms currently mounted and can 
alert you to mount forms as needed. 


The steps involved in setting up a system and using it to produce pre-printed 
forms listed on the following page. The steps lead you through a sample case, 
showing the actions taken by a company that wants to automate printing 
payroll checks. (The database containing the payroll information is assumed 
to exist on the company’s computer.) 
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. The company buys (or asks a programmer to write) application software 


(a program) that takes information from the payroll database to print a 
standard check. 


2. The system administrator installs the application on the system. 


3. The system administrator notifies users (in this case, a company clerk 


responsible for preparing payroll checks) that the application program 
is available to prepare the checks. 


The system administrator uses the sysadm menu for LP forms to iden- 
tify the payroll checks to the print service. The LP print service pro- 
vides this step. 


5. The payroll clerk issues a request to the print service to print checks. 


6. The print service notifies the administrator of the payroll clerk’s re- 


quest and alerts the administrator to change the paper in the printer 
from the current stock to checks. 


The system administrator disables the printer. 


8. The system administrator loads checks into the printer. 


9. The system administrator enables the printer. 


13. 


The system administrator notifies the LP print service that the checks 
are loaded. 


. The printer prints the payroll checks. 


. The system administrator disables the printer and loads the normal 


printer paper. 


The system administrator enables the printer. 


The LP print service does not provide any application software (a program 
that converts a file to a format suitable for a particular form, such as an in- 
voice). You can purchase application software separately or you can write 
your own applications. 
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P5.4.2 Add a Form 
Step 1. To add a form to the print service, enter the following command: 
$ sysadm forms/add_f 


You will be asked to name the form and to provide specifications for it, as 
shown in the following example. 


Name of form: payroll 

Page length: (default: 66 

Page width: (default: 80) 

Lines per inch: (default: 6) 
Characters per inch: (default: 10) 


Number of pages in the form: (default: 1) 2 

Character set to use with the form: (default: any) 

Ribbon color to use with the form: (default: any) black 

Enter a one-line description of this form for your users: 

payroll check for non-supervisory staff 

Enter the full pathname of a file containing an alignment pattern: 
(default: none) /usr/sam/align.check 

What type of file is this? (default: simple) 


Enter a command to run to alert you when the form needs mounting. 
(default: mail lp) write lp 

How many print requests should be waiting before you are alerted? 
(default: 1) 4 

How often should you be alerted (minutes, O=once) ? 

(default: 0) 3 


List the users who are denied access to this form. 


(default: none) 


List the only users who are allowed access to this form. 
(default: all) merlyn ehr3 glg 


install, edit, or skip this form: (default: install) 
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To verify that the new form has been added, enter the following command: 
$ sysadm forms/list_f 


This command prompts you to name the forms for which you want to see a 
complete description. If you specify all, you will receive a list of all available 
forms, including the one you just added. 


Step 2. (This step is optional.) If you would like to mount this form (load it 
on the printer), enter the following command: 
$ sysadm forms/mount_f 


You will be prompted to answer the following questions: 


the name of the printer: (default: printer2) printer3 
the name of the form you are mounting: (default: payroll) 


the name of the print wheel you are mounting: (default: none) 


an alignment pattern? l[y, n, ?, q] yes 


return to print an alignment pattern [q to quit]: 


The third prompt (Enter the name of the print wheel you are 
mounting:) appears only if the printer uses print wheels. If you are 
prompted for the names of both a form and a print wheel, be sure that you 
assign a value other than none to one of them. 


The default form is payroll because that was the last form added to the sys- 
tem with the add command from the forms menu. If the form includes an 
alignment pattern, the prompt Press return to print an alignment 
pattern [q to quit]: appears. When you press(Retum), an alignment pat- 
tern prints on the specified printer. This prompt reappears until you enter q 
to stop printing the alignment pattern. 
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NOTE 


You can also use the Printer Management Menu to mount a 
form. The command line sysadm mount_p is equivalent to the 
mount command shown earlier. 


P5.4.3 Change a Form 
To change the specifications for a form, enter the following command: 
$ sysadm forms/change_f 


The following screen shows a sample sequence. The last form added to the 
print service is listed as the default form; the default values for each prompt 
are taken from this form. You can change any of these values. 


When you complete your changes, you can use the following command to 
check the new configuration. 


$ sysadm forms/list_f 


This command prompts you for the names of forms for which you want to see 
a complete description. To see descriptions of all available forms, including 
the one you have just changed, specify all. 
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Name of form: (default: payroll) 
Page length: (default: 66) 

Page width: (default: 80) 

Lines per inch: (default: 6) 
Characters per inch: (default: 10) 


Number of pages in the form: (default: 2) 

Character set to use with the form: (default: any) 

Ribbon color to use with the form: (default: black) 

Enter a one-line description of this form for your users: 


(default: payroll check for non-supervisory staff) 


Do you want to see the current alignment pattern? (default: no) 
Do you want to keep the current alignment pattern? (default: yes) n 


Enter the full pathname of a file containing an alignment pattern: 
(default: /usr/sam/align.check) /usr/joan/align.new 
What type of file is this? (default: simple) 


Enter a command to run to alert you when the form needs mounting. 
(default: write lp) mail lp 

How many print requests should be waiting before you are alerted? 
(default: 4) 10 

How often should you be alerted (minutes) ? 

(default: 3) 


List the users who are denied access to this form. 
(default: none) 

List the users who are allowed access to this form 
(default: merlyn, ehr3, glg) 


install, edit, or skip this form: (default: install) 
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P5.4.4 Delete a Form 
To delete a form from the print service, enter the following command: 
$ sysadm forms/delete_f 


You will be asked to name the forms you want to remove. Before the system 
deletes the forms, the message Are you sure? appears, allowing you to 
confirm that you are deleting the correct form. 


Step 2. If you want to verify that the form was deleted, enter the following 
command: 
$ sysadm forms/list_f 


This command prompts you for the names of forms for which you want to see 
a complete description. Specify all to see descriptions of all available forms. 
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P5.5 Set Up Filters 


Starting 
Conditions 


To add, change, or delete a filter from the print ser- 
vice 


Multiuser or single-user state 
(If the system is in single-user state, you must run the 
command mount /usr before following this proce- 
dure.) 
Login—root 


Commands | sysadm packagemgmt/lpmgmt/filters/add_f 
sysadm packagemgmt/Ipmgmt/filters/change_f 
sysadm packagemgmt/Ipmgmt/filters/delete_f 


sysadm packagemgmt/Ilpmgmt/filters/list_f 
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Reference 


P5.5.1 Using Filters 


When the LP print service prints a file, it can transform the data from the 
format used in the file to another format. The device the print service uses to 
transform formats is a program called a filter. You must provide any filters 
you want to use on your system (either by buying or writing them); the LP 
print service does not provide filters. 


The print service helps you manage filters that you have installed on your 
system. Specifically, it oversees the use of filters, determining when they are 
needed for print jobs and then matching the appropriate filter with a file and 
a printer. 


If you are not familiar with filters, review the information in Chapter 5 be- 
fore you use the procedures described in this section. 
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The following list shows the steps involved in using filters with the LP print 


service. 
1. Acompany identifies the filters it needs, based on the types of files it 
typically prints. 
2. The company buys or asks programmers to write those filters. 
3. The system administrator adds the filters to the filter table. 
4. Users issue print requests, specifying the type of file and the printer. 
5. The LP print service selects a filter. 
6. The filter transforms the data into the desired format. 
7. The printer prints the document. 
Q 
@ 
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P5.5.2 Add a Filter 
To add a filter to the print service, enter the following command: 
$ sysadm filters/add_f 


The system then prompts you to enter the name of the filter and its specifica- 
tions. Following is an example of this procedure: 


Filter name: 450 

Input types it can convert: (default: any) nroff 
Output types it can produce: (default: any ) 450 
Printer types it is restricted to: (default: any) 455 
Printers it is restricted to: (default: any) 

Is this a slow filter? (default: yes) [y, n, ?, q] 
Enter the filter command and any fixed options: 

450 


Keyword: MODES 
Pattern: landscape 
Template: -1 


Keyword: done 


install, edit, or skip this filter: (default: install) 


To verify that the new filter has been added, enter the following command: 
$ sysadm filters/list_f 


The system then prompts you for a list of the filters for which you want to see 
a description. Specify all to see descriptions of all available filters, including 
the one you just added. 
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P5.5.3 Change a Filter 
To change the specifications for a filter, enter the following command: 
$ sysadm filters/change_f 
The system then prompts you for the name of the filter you want to change. 


If the filter was delivered with the LP print service, you will be asked if you 
want to restore the filter to the factory setting. If you answer no, the 
system will prompt you for a new specification for the filter. 


In the following example, we changed the specification for the filter that we 
added in the previous section. (Because we are not dealing with a filter that 
was delivered with the LP print service, we are not given the choice of restor- 
ing the filter to the factory setting.) We will make two changes: we will 
restrict the filter to another type of printer and we will specify that this filter 
is not a “slow” filter. 


Filter name (default: 450) 

Input types it can convert: (default: nroff) 

Types it can produce: (default: 450) 

Types of printers it is restricted to: (default: 455) 455, 480 
Printers it is restricted to: (default: any) 

Is this a slow filter? (default: yes) [y, n, ?, q] no 

Enter the filter command and any fixed options: 

(default: 450) 


Keyword: (default: MODES) 
Pattern: (default: landscape) 
Template: (default: -1) 


Keyword: done 


install, edit, or skip this filter: (default: install) 
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To verify that the appropriate filter has been changed, enter the following 
command: 


S$ sysadm filters/list_f 


This command prompts you for the names of filters for which you want to see 
a complete description. Specify all to see a list of all available filters, includ- 
ing the one you just changed. 


P5.5.4 Delete a Filter 
To delete a filter from the print service, enter the following command: 
$ sysadm filters/delete_f 


The system prompts you for the name of the filter you want to remove. The 
message Are you sure? then appears, allowing you to confirm your re- 
quest. 


To verify that the appropriate filter has been deleted, enter the following 
command: 


$ sysadm filters/list_f 


This command prompts you for the names of filters for which you want to see 
a complete description. Specify all to see a list of all available filters. 
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Chapter P6 
TTY Management Procedures 


This chapter contains procedures you can use to maintain the TTY subsys- 
tem. Chapter 6 in the second half of this manual contains more detailed in- 
formation about the TTY subsystem. 


This chapter describes the following procedures: 
e Viewing existing TTY line settings 
¢ Creating new TTY line settings and hunt sequences 


¢ Changing characteristics of TTY lines 


P6.1 Check TTY Line Settings 


To view existing line settings 


Starting System state—multiuser or single-user 
Conditions Login—an authorized login 
TTY MANAGEMENT 


sysadm lineset(1) 
Chapter 6, “TTY Management” 


Enter this command to go directly to the lineset display: 


$ sysadm lineset 
Password: 
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A display similar to the following then appears on your terminal. 


Running subcommand ‘lineset’ from menu ‘ttymgmt’, 
TTY MANAGEMENT 
Tty Line Settings and Sequences 


consolel console2 console3 console4 console5 console 


conttyl contty2 contty3 contty4 contty5 contty 
conttylH contty2H contty3H contty4H contty5H contty6H 
pty (does not sequence) 

300 19200 9600 4800 2400 1200 
300H 4800H 9600H 19200H 2400H 1200H 


Each line setting is a name used to identify a set of TTY line characteristics. 
During the login process, the line settings within a row “hunt” from left to 
right, moving from one setting to the next upon receiving a BREAK signal. 
The rightmost setting in each row hunts to the first setting in the row, form- 
ing a circular hunt sequence. 


Note that the pty setting does not sequence. Sending a BREAK has no ef- 
fect. 
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The next portion of the display allows you to look at a line setting in detail. 
You can select any setting; you don’t have to start with the first setting in a 
row. 


Select one line setting to see it in detail [?, q]: 1200H 


Line Setting: 1200H 
Initial Flags: B1200 
Final Flags: B1200 SANE IXANY TAB3 HUPCL 
Login Prompt: login: 
Next Setting: 300H 


B1200 1200 Baud 

HUPCL Hang Up on Last Close 

IXANY Enable Any Character to Restart Output 

SANE Set All Modes To "Traditionally Reasonable" Values 
TAB3 Expand Horizontal-tab To Spaces 


Select another line setting or 
<RETURN> to see the original list [?, q]: 
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P6.2 Create TTY Line Settings 


To create new line settings and hunt sequences 


Starting System state—multiuser or single-user 
Conditions Login—an authorized login 


TTY MANAGEMENT 


sysadm mklineset(1) 
Chapter 6, “TTY Management” 


In this procedure, we are connecting a dual-speed modem that can handle 
300 baud and 1200 baud. There is a 1200 setting already in the table, but if 
users somehow miss the speed, they will have to press(Break) several times to 
hunt to 1200 again. Since we are interested in only the two speeds, we'll cre- 
ate a new 1200-300 sequence. 


Enter this command to go directly to the mklineset display: 


$ sysadm mklineset 
Password: 


The sequence of prompts shown on the next page then appears on your termi- 
nal. 


P6-4 Operations Guide: sysadm 
1003-48607-00 


TTY Management Procedures 


Running subcommand ‘’mklineset’ from menu ‘ttymgmt’, 
TTY MANAGEMENT 


Enter the name of the new tty line setting [?, q]: 1200300 
Select a baud rate [?, q]: ? (Toask for HELP) 


Available baud rates: 
50 134 200 600 1800 4800 19200 
75 150 300 1200 2400 9600 38400 
110 

Select a baud rate [?, q]: 1200 


Enter the login prompt you want (default = "login: ") [?, q]: 
Do you want to add another tty line setting to the sequence? [y, n, q] y 


Enter the name of the new tty line setting [?, q): 3001200 

Select a baud rate [?, qJ: 300 

Enter the login prompt you want (default = “login: ") [?, q]): 
© Do you want to add another tty line setting to the sequence? [y, n, q] n 


Here is the tty line setting sequence you created: 


1200300 3001200 
Line Setting: 1200300 
Initial Flags: B1200 HUPCL 
Final Flags: B1200 SANE IXANY HUPCL TAB3 
Login Prompt: login: 
Next Setting: 3001200 
Line Setting: 3001200 
Initial Flags: B300 HUPCL 
Final Flags: B300 SANE IXANY HUPCL TAB3 
Login Prompt: login: 
Next Setting: 1200300 
B1200 1200 Baud 
B 300 300 Baud 
HUPCL Hang Up on Last Close 
IXANY Enable Any Character to Restart Output 
SANE Set All Modes To "Traditionally Reasonable" Values 
TAB3 Expand Horizontal-tab To Spaces 
Do you want to install this sequence? [y, n, q] y 


& Installed. 
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P6.3 Modify TTY Line Characteristics 


[Purpose | To modify TTY line settings or to turn a line on or off 
Starting System state—multiuser or single-user 
Conditions Login—an authorized login 

TTY MANAGEMENT 


sysadm modtty(1) 
Chapter 6, “TTY Management” 


In this example, we will tell the computer the port to use with the line set- 
tings defined in Procedure P6.2. 


Enter this command to go directly to the modtty display: 


$ sysadm modtty 
Password: 


The sequence of prompts shown on the next page then appears on your termi- 


nal. & 
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Running subcommand ‘modtty’ from menu ‘ttymgmt’, 
TTY MANAGEMENT 


Select the tty you wish to modify, 
or enter ALL to see a report of all ttys [?, q]: ttyGA/GAAH 


ttyGA/GAAH: current characteristics: 
State off 
Hangup Delay off 
Line Setting 9600 
Description 


Available states: 
off on 
Select a state (default: off) [?, q]: on 


Enter a hangup delay in seconds, or ‘off’ (default:off) [?,q]: 45 
(Because this is a dial-up line, we want to specify a timeout figure.) 


Available line settings: 


(The line settings available on your system appear here.) 


Select a line setting (default: 9600) [?, q]: 1200300 
Current description: 


Enter a new description (default: current description) [?, q]: 
1200/300 baud dial in line 


ttyGA/GAAH: new characteristics: 
State on 
Hangup Delay 45 
Line Setting 1200300 
Description 1200/300 baud dial in line 
Do you want to install these new characteristics? [y, n, q] y 
ttyGA/GAAH now has new characteristics. 
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Basic Network Procedures 


This chapter contains the procedures you can use to set up and maintain the 
Basic Networking system. Chapter 7 in the second half of this manual pro- 
vides more detailed information about Basic Networking. 


This chapter describes the following procedures: 
¢ Configuring basic networking files 
¢ Maintaining basic networking files and operations 


¢ Tracking down problems in basic networking 


P7.1 Set Up Basic Networking Files 


Purpose To configure basic networking files and to ensure 
proper communications links 

When Initial setup and when adding new devices or remote 

Performed systems 


Starting System state—2 (multiuser) or 1 (single-user) 
Conditions (You must execute mount /usr to run this procedure 
in single-user mode) 
Login—an authorized login 


PACKAGE MANAGEMENT 


Commands sysadm uucpmgmt(1) 
sysadm devicemgmt(1) 
sysadm portmgmt(1) 

sysadm systemmgmt(1) 
sysadm pollmgmt(1) 


Chapter 7, “Basic Networking” 
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This procedure provides instructions for setting up the Basic Networking fa- 
cility and putting it into operation. You will need to use both sysadm sub- 
commands and a text editor to carry out this procedure. 


The following steps show how to add entries to three of the necessary support 
files: Devices, Systems, and Permissions. They also show how to modify ex- 
isting entries in the /etc/inittab file. This section also describes the setup of 
several optional files. 


To begin, type the command shown on the following screen and the Basic 
Networking Utilities Management Menu will appear. 


$ sysadm uucpmgmt 
Password: 


BASIC NETWORKING UTILITIES MANAGEMENT 


1 devicemgmt manage devices (list, add, delete) 

2 pollmgmt manage poll entries (list, add, delete) 

3 portmgmt manage I/O ports (list, modify) 

4 systemmgmt Manage remote systems entries (list, add, delete, call) 


Enter a number, a name, the initial part of a name, or 
? or <number>? for HELP, q to QUIT: 


You can access the subcommands on this menu either from the menu or di- 
rectly from the shell. 
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P7.1.1 Set Up Devices File: devicemgmt 


The Devices file (/usr/lib/uucp/ Devices) contains information about the de- 
vices used to call other machines. For details on this file, refer to Chapter 7. 


To add entries to the Devices file, type sysadm devicemgmt, then select the 
add option. 


$ sysadm devicemgmt 
Password: 


Running subcommand ‘devicemgmt’ from menu ‘uucpmgmt’, 
BASIC NETWORKING UTILITIES MANAGEMENT 


This procedure is used to list, add, and delete entries 

in the Basic Networking Utilities '/usr/lib/uucp/Devices’ file. 
This file contains information about devices 

available for calling out using the commands: uucp, cu, and ct, 


Type ‘gq’ at any time to quit the present operation. 
If a '?' appears as a choice, type '?’ for help. 


If a default appears in the question type RETURN for the default. 


Enter the operation you want to perform: 


1 list 
2 add 
3 delete 


(default list) [q]: 2 
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The following prompts appear: 


port name 
Enter the name of the port to which the device will be connected. 


device name 
Enter the name of the device you are connecting to the port. (A list of 
available device types appears on the screen; the default value is pen- 
ril.) If you specify ACU as the device type, two entries are created, one 
for 300 baud and one for 1200 baud. 


The information you specified then appears on the screen, giving you a 
chance to change it before it is entered into the Devices file. 


The /etc/inittab file might not contain a correct entry for the port just as- 
signed. You can change the port now or later using the portmgmt subcom- 
mand described in the next procedure. 
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P7.1.2 Set Up /etc/inittab: portmgmt 


The /etc/inittab file contains information about the ports to which devices 
are connected. For further information on this file, refer to Chapter 3, “Pro- 
cessor Operations.” 


To add entries to the /etc/inittab file, type sysadm portmgmt, then select 
the modify subcommand. 


$ sysadm portmgmt 
Password: 


Running subcommand ‘portmgmt’ from menu ‘uucpmgmt’, 
BASIC NETWORKING UTILITIES MANAGEMENT 


This procedure is used to list and modify 
the entries that control the direction of traffic 


on the Basic Networking Utilities I/O ports used by uucp, cu, and ct. 


Type ‘q’ at any time to quit the present operation. 
If a '?’ appears as a choice, type ‘?’ for help. 


If a default appears in the question, type <RETURN> for the default. 


Enter the operation you want to perform: 


1 list 
2 modify 


(default list)[q]: 2 
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The following prompts then appear on your screen. 


port name 
Enter the name of the port you want to modify (the port must be included 
in the list appearing on your screen). 


traffic direction 
Specify the direction of the traffic on the port. Your choices are incom- 
ing only, outgoing only, or bidirectional. 


baud rate 
Enter the speed (baud rate) of the port. 


The information you specified then appears on the screen, giving you a 
chance to change it before it’s added to the /etc/inittab file. 


NOTE 


Because adding a device (sysadm devicemgmt) automatically 
creates a port entry in /etclinittab, you might need to use 
sysadm portmgmt only for modifications. 
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P7.1.3 Set Up Systems File: systemmgmt 


The /usr/lib/uucp/Systems file contains the information uucp uses to call 
and then log onto a remote machine. Each entry represents one remote 
machine that can be called by your Basic Networking programs. 


If the Systems entry is to be used to contact a machine that is hardwired to 
your computer, refer to Chapter 7 for special instructions on setting up the 
Systems file. 


To add other machines to your Systems file, type sysadm systemmgmt, 
then type 2 to select the add subcommand. 


$ sysadm systemmgmt 
Password: 


Running subcommand ‘systemmgmt’ from menu ‘uucpmgmt’ 
BASIC NETWORKING UTILITIES MANAGEMENT 


This procedure is used to list, add, and delete entries in the 


Basic Networking Utilities ’/usr/lib/uucp/Systems’ file. 
This file contains information about what remote systems 
can be called by cu and uucp commands. 

You can also try to call a remote system that appears 

in the '/usr/lib/uucp/Systems’ file. 


Type ‘q’ at any time to quit the current operation. 
If a‘? appears as a choice, type ‘?’ for help. 


If a default appears in the question, type <RETURN> for the default. 


Enter the operation you want to perform: 


list 
add 
delete 
call 


(default list)[q]: 2 
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The following prompts then appear on your screen. 


node name 
Type the node name of the system you want to call. 


device type 
Specify the type of device used to establish a connection (for example, 
acu). 


baud rate 
Enter the speed at which the device will place the call. 


phone number 
Enter the telephone number of the remote machine. Special symbols can 
be embedded in the phone number, including abbreviations from the Di- 
alcodes file (/usr/lib/uucp/Dialcodes). 


login ID 
Specify the login uucp will use to log in on the remote machine. 


password 
Specify the password associated with the above login. 


The information you entered will appear on the screen, giving you a chance to 
change it before it’s added to the Systems file. 
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P7.1.4 Set Up Poll File: pollmgmt 


The /usr/lib/uucp/ Poll file contains a list of the machines that are to be 
called (polled) by your computer to see if they have anything to transmit to 
you. It also contains the times they are to be polled. To add entries to the 
Poll file, type sysadm pollmgmt, then type 2 to select the add option. 


$ sysadm pollmgmt 
Password: 


Running subcommand ‘pollmgmt’ from menu ‘uucpmgmt’, 
BASIC NETWORKING UTILITIES MANAGEMENT 


This procedure is used to list, add, and delete entries in the 
Basic Networking Utilities ’/usr/lib/uucp/Poll’ file. 

This file contains information about what systems and 

the times (hours) the systems should be polled. 


Type ‘q’ at any time to quit the current operation. 


If a ‘'?‘ appears as a choice, type '?’ for help. 


If a default appears in the question, type RETURN for the default, 


Enter the operation you want to perform: 
1 list 

2 add 

3 delete 


(default list) [q]: 2 
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The following prompts then appear on your screen. 


system name 
Type the name of the system you want to poll. 


polling hours 
Specify the hours you want to poll the system; this must be an integer be- 
tween 0 and 23 (for example, the entry 0 4 8 12 16 20 indicates the sys- 
tem is to be polled every four hours). 


The information you entered appears on the screen, giving you a change to 
change it before it is added to the Poll file. 
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P7.1.5 Set Up Permissions File 


The default /usr/lib/uucp/Permissions file provides the maximum amount 
of security for your computer. The file, as delivered, contains the following 
entry: 


LOGNAME=nuucp 
You can create separate entries for each machine to define these parameters: 
¢ The ways it can receive files from your machine 
¢ The directories in which it can read and write 
¢ The commands it can use for remote execution 


See Chapter 7 for information on how to set up this file. If you want to modi- 
fy the file, use an editor such as vi. 


P7.1.6 Set Up Devconfig File 


The /usr/lib/uucp/Devconfig file is needed only if you are using the Basic 
Networking Utilities over a Streams-based transport provider that conforms 
@ to the AT&T Transport Interface (TI). 


You must also create an entry for the transport provider in your Devices file. 
The descriptions in the Devices file tell how to define Transport Interface de- 
vices. 


The entries in the Deuconfig file define the STREAMS modules used for a 
particular TI device. (The push= variable shows the modules and the order 
in which they are pushed onto a stream.) Different modules and devices can 
be defined for cu and uucp services. If you want to change the contents of 
this file, use an editor such as vi. 


Operations Guide: sysadm P7-11 
1003-48607-00 


Basic Network Procedures 


P7.1.7 Set Up Sysfiles File 


The /usr/lib/uucp/Sysfiles file lets you assign different files to be used by 
uucp and cu as Systems, Devices, and Dialers files. Here are some cases 
where this optional file may be useful: 


* You might want different Systems files so requests for cu login services 
can be made to addresses other than uuep services. 


¢ You might want different Dialers files to use different chat scripts for 
cu and uucp. 


¢ You might want to have multiple Systems, Dialers, and Devices files. 
The Systems file in particular can become large, making it convenient to 
split it into several smaller files. 


The format of the Sysfiles file is described in Chapter 7. Following is an ex- 
ample of the file. 


service=uucico systems=Systems.cico:Systems 
dialers=Dialers.cico:Dialers 
devices=Devices.cico:Devices 

service=cu systems=Systems.cu:Systems 
dialers=Dialers.cu:Dialers 
devices=Devices.cu:Devices 


If you want to modify the contents of this file, use an editor such as vi. 


P7.1.8 Add UUCP Logins 


You must add one or more administrative logins to your system so that in- 
coming uucp (uucico) requests from remote machines can be handled prop- 
erly. Each remote machine should have an entry for your machine in its Sys- 
tems file. This entry should contain the login ID and password that you ad- 
ded to your /etc/passwd file. 


Following is a sample entry from the /etc/passwd file. 
nuucp:x:6:1:UUCP.Admin:/usr/spool/uucppublic:/usr/lib/uucp/uucico 


This entry shows that a login request by nuucp is answered by 
/usr/lib/uucp/uucico. The home directory is /usr/spool/uucppublic. To as- 
sign a password to the login, use passwd nuucp. 
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P7.1.9 Other Networking Files 


There are three other files that affect the use of uucp. In most cases, the de- 
fault values are fine and no changes are needed. If you want to change them, 
however, use an editor such as ed or vi. 


Maxuuxqts 
This file defines the maximum number of uuxqt programs that can run 
at once. 


Maxuuscheds 
This file defines the maximum number of uusched programs that can 
run at once. 


remote.unknown 
This file is a shell script that executes when an unknown machine starts 
a conversation. It logs the conversation attempt and fails to make a con- 
nection. (If you change the permissions of this file so that it cannot exe- 
cute, your system will accept any conversation requests.) 
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P7.2 Basic Networking Maintenance 


Purpose To keep files related to basic networking from con- 
suming too much disk space 

When Automatically with ecron(1M) or as needed 

Performed 

Starting System state—2 (multiuser) or 1 (single-user) 

Conditions 


The Basic Networking Utilities come with four shell scripts that poll remote 
machines, reschedule transmissions, and clean up old log files and unsuccess- 
ful transmissions. These shell scripts should be executed regularly to keep 
your basic networking running smoothly. Normally, they are run automati- 
cally with cron(1M), although they can also be run manually. The few areas 
needing clean up that are not handled by these shell scripts should be main- 
tained manually. 


P7.2.1 Automated Networking Maintenance (cron) 


UUCP is delivered with entries for uudemon shell scripts in the 
/usr/spool/cron/crontabs/root file. These entries automatically handle 
some administrative tasks for you. Each of these shell scripts is in 
/usr/lib/uucp. 


When the computer is in run state 2 (multiuser), cron scans the 
/usr/spool/cron/crontabs/root file every minute for entries scheduled to ex- 
ecute at that time. As the UUCP administrator, you should become familiar 
with cron and the four uudemon shell scripts described in the following 
paragraphs. 


P7.2.2 uudemon.poll 
The uudemon.poll shell script, as delivered, performs these tasks: 
¢ Reads the Poll file (/usr/lib/uucp/ Poll) once an hour. 


¢ If any of the machines in the Poll file are scheduled to be polled, a work 
file (C.sysnxxxx) is placed in the /usr/spool/uucp/nodename directory, 
where nodename is replaced by the name of the machine. 
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This script runs as a daemon process once an hour (by default) and is con- 
trolled by this entry in the /usr/spool/cron/crontabs/root file. 


40 * * * * /bin/su uucp -c "/usr/lib/uucp/uudemon.poll>/dev/null" 


P7.2.3 uudemon.hour 
The uudemon.hour shell script performs these tasks: 


¢ Calls the uusched program to search the spool directories for work 
files (C.) that have not been processed and schedules these files for 
transfer to a remote machine. 


* Calls the uuxqt daemon to search the spool directories for execute files 
(X.) that have been transferred to your computer and were not pro- 
cessed at the time they were transferred. 


The uudemon.hour script runs as a daemon process twice an hour (by de- 
fault) just after the uudemon.poll script runs. The following entry in the 
/usr/spool/cron/crontabs/root file controls this script. 


26,56 * * * * /bin/su uucp -c "/usr/lib/uucp/uudemon.hour> /dev/null" 


P7.2.4 uudemon.admin 
The uudemon.admin shell script, as delivered, performs these tasks: 


¢ Runs the uustat command with the -p and -q options. The -q option 
reports on the status of queued work files (C.), data files (D.), and exe- 
cute files (X.). The -p option prints process information for networking 
processes listed in the lock files (/usr/spool/locks). 


¢ Sends resulting status information to the uucp administrative login via 
mail. 
If you want cron to run this script automatically as a daemon process, add 
an entry such as the following to the /usr/spool/cron/crontabs/root file. 


48 11,14 * * 1-5 /bin/su uucp -c "/usr/lib/uucp/uudemon.admin > 
/dev/null 2>61" 
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P7.2.5 uudemon.cleanup 
As delivered, the uudemon.cleanup shell script performs these tasks: 


¢ Takes log files for individual machines from the /usr/spool/uucp/.Log 
directory, merges them, and places them in the /usr/spool/uucp/.Old 
directory with other old log information. If log files grow large, you 
might need to increase the ulimit. 


¢ Removes work files (C.) and data files (D.) that are at least seven days 
old and execute files (X.) that are at least two days old from the spool 
files. 


¢ Returns undeliverable mail to the sender. 
¢ Mails a summary of the status information gathered during the current 
day to the UUCP administrative login (uuecp). 
If you want cron to run this script automatically as a daemon process, add 
an entry such as the following to the /usr/spool/cron/crontabs/root file. 


45 23 * * * ulimit 5000; /bin/su uucp -c “/usr/lib/uucp/uudemon.cleanup > 
/dev/null 2>61" : 
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P7.2.6 Manual Maintenance 


Some files can grow indirectly from uucp and other basic networking activi- 
ties. Here are two files you should check and delete if they become too large. 


/usr/adm/sulog 
This file keeps a history of all superuser commands. Since the 
uudemon entries in the /usr/cron/root file use the su command, 
the sulog file will grow over time. You should delete this file if it be- 
comes too large. 

/usr/lib/cron/log 
This file is a log of cron activities. While it grows with use, it is auto- 
matically truncated when the system goes to the multiuser state. 
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P7.3 Basic Networking Debugging 


Purpose To use available monitoring tools to solve basic net- 
working problems 


Starting System state—2 (multiuser) or 1 (single-user) 
Conditions 


Commands | uustat(1) 
eu(1) 
Uutry(1) 
uuname(1M) 
uulog(1) 
uucheck(1) 


These procedures describe how to solve common UUCP problems. 


P7.3.1 Check for Faulty ACU/Modem 


The following commands can help you determine if automatic call units or 
modems are working properly. 


¢ Run uustat -q. This command gives counts and reasons for contact 
failure. 


¢ Runcu-d -lline. This command lets you call over a particular line and 
prints debugging information on the attempt. For a direct connection, 
the line must be defined as Direct in the Devices file. You must add a 
telephone number to the end of the command line if the line is connect- 
ed to an autodialer. 
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P7.3.2 Check Systems File 


If you are having trouble contacting a particular machine, make sure the in- 
formation in your Systems file is current. The following information might be 
out of date: 


¢ Phone number 
¢ Login 


¢ Password 


P7.3.3 Debug Transmissions 


If you are unable to contact a particular machine, you can use Uutry and 
uucp to check out communications to that machine. 


To simply try to make contact, run the following command, replacing 
machine with the node name of the machine you are having problems con- 
tacting. 


s /usrfib/uucp/Uutry -r machine 
This command performs these tasks: 


1. Starts the transfer daemon (uucico) with debugging. You will get more 
debugging information if you are root. 


2. Directs the debugging output to /tmp/machine. 
3. Prints the debugging output to your terminal (tail -f). Press to 
end output. 
You can copy the output from /tmp/machine if you want to save it. 


If Uutry doesn’t isolate the problem, try to queue a job by running the follow- 
ing command, replacing file with the file you want to transfer, machine with 
the name of the remote machine, and dir /file with the file to be placed on the 
remote machine. 

$ uucp -r file machine! /dir/file 


The -r option will queue a job but not start the transfer. 


Now use Uutry again. If you still cannot solve the problem, call support per- 
sonnel. Save the debugging output; it will help in diagnosing the problem. 
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P7.3.4 Check Error Messages 


There are two types of error messages for Basic Networking Utilities: 


ASSERT Error Messages 
When a process is aborted, ASSERT error messages are recorded in 
/usr/spool/uucp/.Admin/errors. These messages include the file 
name, sccsid, line number, and text. These messages usually result 
from system problems. 


STATUS Error Messages 
Status error messages are stored in the /usr/spool/uucp/.Status di- 
rectory. The directory contains a separate file for each remote 
machine with which your computer attempts to communicate. These 
files contain status information on the attempted communication and 
tell whether it was successful. 


P7.3.5 Check Basic Information 


You can use the following commands to check UUCP information. 


uuname Lists the systems your machine can contact. 
uulog Displays the contents of the log directories for specific hosts. 


uucheck -v . Checks for the presence of files and directories needed by 
uucp; checks the Permissions file and outputs information on 
the permissions you have set up. 
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System Security 


1.1 Introduction 


This chapter contains information that can help you maintain the security of 
your computer system. Chapter P1 in the first half of this guide provides the 
procedures you'll need to manage your system’s identification and security 


setup. 
This chapter includes the following information: 


¢ Security guidelines for setting passwords and permissions and for pro- 
tecting the system from unauthorized access 


¢ Adescription of the password aging facility, which allows you to specify 
when passwords must be changed 


& e A procedure to lock unused logins 
¢ A description of special administrative commands and logins 


1.2 Security Guidelines 


The security of the system is the responsibility of everyone having access to 
it. Although no system is totally secure, the following suggestions can im- 
prove your system security: 


¢ Restrict physical access to the machine to authorized users only. 


¢ Set the access permissions for directories and files to allow only the nec- 
essary permissions for owner, group, and others. 


¢ Require a password for all logins. Encourage users to change pass- 
words regularly and to pick passwords that aren’t obvious. (Nonsense 
strings that contain 6 to 8 characters and include both letters and num- 
bers are recommended.) Remove or lock unneeded logins. 


¢ Require logins for all dial-up ports. 
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© Do not keep top secret information on a system with dial-up ports. Any 
system with dial-up ports is not really secure. 


¢ Check the /usr/adm/sulog file to monitor usage of the su command. 
To use the su command, you must know another user’s password. The 
more people who know a given login and password, the less secure ac- 
cess is to the system. To allow you to monitor su command usage, the 
system keeps a log (/usr/adm_/sulog) that records its use. Appendix A, 
“Administrative Directories and Files,” describes the format of this log. 


¢ Check the permission levels of login directories, .profile files, and files in 
/bin, /usr/bin, and /etc. These files should not be writable by others. 


¢ Encrypt sensitive data files. The erypt(1) command, along with the en- 
eryption capabilities of the ed and vi editors, provides protection for 
sensitive information. (The crypt command is available only in the Un- 
ited States.) 


¢ Log off the system if you must be away from your terminal. Do not 
leave a logged-in terminal unattended, especially if you are logged in as 
root. 


1.8 Logins and Passwords 


This section tells how to set up password aging and includes some sample en- 
tries in the /etc/passwd file. It also tells how to lock unused logins and de- 
scribes some special administrative logins that should be assigned passwords. 


1.3.1 Password Aging 


The password aging mechanism forces users to change their passwords peri- 
odically. You can specify both the minimum and maximum number of days a 
password can be in effect. Realistically, password aging forces a user to 
adopt at least two passwords. 


If your site is using the /etc/shadow file to store password information, add 
the password aging information to that file. If you are not using the 
/etc/shadow file, add the password aging information to the /etc/passwd 
file. 
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Specify Password Aging in the /etc/shadow File 


The /etc/shadow file contains a line for each user set up on your system. 
Each line contains five fields separated by colons: 


username : password : lastchanged : min: max 


The first field contains the user’s login name, the second field contains an en- 
crypted version of the user’s password. The lastchanged field contains the 
number of days between January 1, 1970, and the date the password was last 
changed. 


The last two fields, min and max, contain the password aging information. 
To add aging information to this file, use an editor such as vi to edit the file. 
Then add the minimum number of days a password can be in effect to the 
min field; add the maximum number of days a password can be in effect to 
the max field. 


The system compares these values with the entry in the lastchanged field. 
When a user attempts to change a password, the system verifies that the 
password has been in effect the number of days specified by the min field. If 
it has not, the system does not allow the user to change the password. 


When a user logs in, the system checks the number of days the password has 
been in effect. If it has been in use for the number of days specified by the 
max field, the system prompts the user to select a new password. 


Specify Password Aging in the /etc/passwd File 


If your site is not using the /etc/shadow file, you must add password aging 
information to the /etc/passwd file. This file contains a line for each user set 
up on the system. Each line contains seven fields separated by colons: 


login : password : uid : gid: account : homedirectory : program 


The login field contains the user’s login name, the password field contains an 
encrypted version of the user’s password, the uid field contains the user’s ID 
number, and the gid field contains the number assigned to the user’s group. 
The account field contains miscellaneous information about the user, the 
homedirectory field contains the user’s home directory, and the program field 
contains the user’s shell program. 


To add password aging information for a particular user, use an editor such 
as vi to edit the file. Then append the aging information to the password 
field. 
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The password aging information consists of a comma and up to four charac- 
ters in this format: 


»>Mmww 


The characters have the following meanings: 


‘ The delimiter between the password itself and the aging information 


M The Maximum duration of the password (in weeks, following the nota- 
tion in Table 1-1) 


m The minimum time interval before the user can change the existing 
password (in weeks, following the notation in Table 1-1) 


ww The week (counted from the beginning of 1970) when the password was 
last changed (the system automatically adds these characters to the 
password aging information) 


All times are specified in weeks (0 through 63) by a 64 character alphabet. 
Table 1-1 shows the relationship between the numerical values and charac- 
ter codes. Any of the character codes can be used in the password aging in- 
formation. 


Table 1-1 
Password Aging Character Codes 


Number of Weeks 


. (period) 0 (zero) 

/ (slash) 1 

Othrough9 | 2 through 11 
A through Z | 12 through 37 
athroughz | 38 through 63 


Two special cases apply: 


¢ IfM and m are equal to zero (the code ..), the user is forced to change 
the password at the next login. No further password aging is then ap- 
plied to that login. 
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¢ Ifm is greater than M (for example, the code ./), only root can change 
the password for that login. 


Password aging can be set up in a variety of ways to meet the needs of differ- 
ent organizations. Following are some examples. 
Change Every Two Weeks 


The password aging information in this example requires the user to estab- 
lish a new password every 2 weeks (0). It also prevents the user from chang- 
ing the new password for at least 1 week (/). 


Here is the original entry in the /etc/password file for user jqu: 
jqu: RTKESMMOE2m.E:100:1:3.Q. Username: /userl/jqu: 


To cause jqu to change the password at least every two weeks but keep a 
password at least one week, use the code 0/. After you edit the /etc/passwd 
file, adding ,0/ to the password field, the entry looks like this: 


jqu: RTKESmMOE2m.E,0/:100:1:3.Q. Username: /userl/jqu: 


This entry requires jqu to change the password at the next login and every 
two weeks thereafter. 


The first time jqu logs in after changing the password, the system automati- 
cally adds the two-character, “last-time-changed” information to the pass- 
word field. 


jqu: RTKESmMMOE2m.E,0/W9:100:1:3.Q. Username: /userl/jqu: 


In this example, jgu changed the password in week W9. 


Change One Time Only 
This example requires the user to change the password at the next login. 
Here is the orignal /etc/passwd entry for user jqu: 

jqu: RTKESMMOE2m.E:100:1:J3.Q. Username: /user1/jqu: 


To cause jqu to change the password at the next login, you should use the .. 
code. (This change is required one time only.) After you edit the 
/etc/passwd file, adding ,.. to the password field, the entry looks like this: 


jqu: RTKESmMOE2m.E,..:100:1:3.Q. Username: /user1/jqu: 
At the next login, jqgu will need to change the password. 
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After jqgu supplies the new password, the system automatically removes the 
aging code (, . .) from the password field: 


jqu: EFDNLqsFUj.£s:100:1:J3.Q. Username: /userl1/jqu: 
Note that the encrypted password information has changed. 


Change by root Only 


The password aging information in this example allows only the root login to 
change the password (the code is ./). 


Here is the original /etc/passwd entry for user jqu: 
jqu: RTKESmMOE2m.E:100:1:73.Q. Username: /userl1/jqu: 


To allow only the root login to change jgu’s password, use the ./ code. After 
you edit the /etc/passwd file, adding , ./ to the password field, the entry 
looks like this: 


jJqu: RTKESmMMOE2m.E,./:100:1:7.Q. Username: /userl/jqu: 


Now only root can change the password for the jqgu login. Ifjqu tries to 
change the password, a “permission denied” message will appear. 


1.3.2 Locking Unused Logins 

If a login is not used or needed, you should take one of these actions: 
¢ Remove the entry for that login from /etc/passwd. 
¢ Disable (lock) the login. 


If you need to disable a login, use an editor such as vi to edit the the encrypt- 
ed password field. If your site is using the /etc/shadow file, edit the pass- 
word field in that file. If you are not using /etc/shadow, edit the password 
field in the /etc/passwd file. 


In the password field, type one or more characters that are not used by the 
encryption process. For example, you could replace the encrypted password 
with the expression Locked;. This expression disables the login because the 
encryption process does not use the semicolon (;) character. (The word 
Locked serves only to remind you that the login is locked.) You could also 
type the expression not valid, because the encryption process does not use a 
space. 
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In the following entry from the /etc/passwd file, we locked user jqu’s login. 
jqu: Locked; :100:1:3.Q. Username: /userl/jqu: 


1.3.3 Special Administrative Logins 


There are two familiar ways to access the system: through a conventional 
user login or the root login. If these were the only ways to access the system, 
its effective use would be curtailed. Either root would own many directories 
(requiring many users to know the root password, which is a bad security 
risk), or the system would be wide open (because root would own few direc- 
tories). Both of these conditions are undesirable. 


A good mix of system use and system security is available through the use of 
special system logins and administrative commands. The administrative com- 
mands (which are also logins) perform functions that might be needed by a 
number of users on your system: 


setup Sets up the computer. Once the machine has been set up, you 
do not want anyone doing it again without your knowledge. 


sysadm Allows access to many useful administrative functions that do 
not require a user to log in as root. 


checkfsys Initiates a filesystem check on the specified filesystems. 
mountfsys Mounts the specified filesystem for use. 
umountfsys Unmounts the specified, previously mounted filesystem. 


powerdown Brings the system down to the firmware monitor, where it is 
safe to turn off the power to the system. 


bupsched Sets up a backup reminder schedule. 


These commands allow access to selected directories and system functions. 
They can be used as login names at the console as well as commands. If you 
log in to the system with one of these names, the system will execute the com- 
mand after the login is completed. When you quit or complete the function 
performed by the command, the system will exit to the login: prompt. 


Because most of these system functions allow a user access to critical por- 
tions of the operating system, you should assign passwords to the administra- 
tive commands. Any user attempting to use one of these commands as a lo- 
gin (and any user attempting to execute one of these commands from the 
shell) will then be prompted for the password. 
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Following is a list of system logins and the directories they control. You 
should assign passwords to the root, uucp, nuucp, and Ip logins. The re- 
maining logins are locked and cannot be used to log into the system. 


root This login overrides all other logins, protections, and permissions, 
giving the user access to the entire operating system. The pass- 
word for this login should be carefully protected. 


sys This login has the power of a normal user login over the files it 
owns, which are in /usr/src. 

bin This login has the power of a normal user login over the files it 
owns, which are in /bin. 

adm This login has the power of a normal user login over the object 
files it owns, which are in /usr/adm. 

uucp This login owns the object and spooled data files in 
/usr/lib/uucp. 


mnuucp This login is used by remote machines to log into the system and 
initiate file transfers. 


daemon This login belongs to the system daemon, which controls back- 
ground processing. 


Ip This login owns the object and spooled data files in /usr/spool/lp. 
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2.1 Introduction 


This chapter describes the user and group information that must be main- 
tained on the system and discusses user communication services. Chapter P2 
in the first half of this manual provides the procedures you can use to main- 
tain user and group information and to broadcast messages to users. 


This chapter describes a variety of user services provided by the system ad- 
ministrator: 


¢ Login administration 


Setting up accounts for new users; maintaining the /etc/passwd, 
/etc/shadow, and /etc/group files 


¢ User environment setup 


Setting up a master start-up file and helping users develop individual 
start-up files 


¢ User communications services 


Establishing and maintaining such services as message-of-the-day, 
news, and mail 


¢ User requests 


Developing an organized plan for responding to user problems 


2.2 Login Administration 


This section describes the /etc/passwd, /etc/shadow, and /eitc/group files. 
The /etc/passwd file contains information for each user on your system; this 
information is called a login or user account. The /etc/shadow file is option- 
al. If your site is using this file, it will store the password information associ- 
ated with each user account. The /etc/group file stores information about 
each group set up on your system. 
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2.2.1 The /etc/passwd File 


Before users can log into your system, they must be listed in the /etc/passwd 
file. The adduser option on the User Management Menu leads you through 
a series of prompts that create entries in the password files. Chapter P2 de- 
scribes this option. 


Each entry in the /etc/passwd file consists of a single line. Following is a 
sample entry: 


abe:x:103:123:Allen B. Cipher:/usr/abc: 


Each line contains seven fields that are separated by colons: 


login name A valid name for logging onto the system. A login name can 
be from 3 to 6 characters long; the first character must be 
alphabetic. Typically, users select their own login names. 


password If your site is not using the /etc/shadow file, this field con- 
tains an encrypted form of the password associated with the 
login name. The encrypted password contains 13 charac- 
ters; however the actual password can contain up to 8 char- 
acters. At least one character must be numeric. This re- 
quirement is to discourage users from choosing ordinary 
words as passwords. When you add a user to the file, you 
can use a default password such as passwd9 and then in- 
struct the user to change it at the first login. This field can 
also include password aging information, as described in 
Chapter 1, “System Security.” 


If your site is using the /etc/shadow file, the encrypted 
password and the aging information are stored there and 
this field contains an x. 


user id The user ID number (UID) must be between 0 and 50000. It 
cannot include a comma. Numbers below 100 are reserved; 
user ID 0 is reserved for the superuser. When you add a 
user, the menu system does not allow you to specify a num- 
ber below 100. 


group id The same conditions apply to the group ID number (GID) as 
to the UID, except that group 1 is reserved for the “other” 
group. 
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account There is no required format for this field. Typically it con- 
tains information such as the user’s name. 


home directory This is the directory where the user is placed when logging 
in. It is the origination point for the user’s directory tree 
and usually has the same name as the user’s login. 


program This is the name of the shell program invoked at the time 
the user logs in. If this field is empty, the default program 
is /bin/sh. This field can be used to invoke a special shell 
such as /bin/rsh (restricted shell). 


If you inspect the /etc/passwd file on your system, you will see several com- 
mands listed among the user login names. These are commands such as 
bupsched or sysadm that can be assigned passwords. 


2.2.2 The /etc/shadow File 


This file contains password information for each user on your system. Be- 

cause only the user root can read /etc/shadow, it provides more security 

than /etc/passwd, which all users can read.-The system consults /etc/shad- 
© ow whenever it needs to verify password information. 


Each entry in the /etc/shadow file contains the following fields: 


username The user’s login name. 


password An encrypted version of the user’s password. If the login is dis- 
abled, this field also includes a lock string. 


lastchanged The number of days between January 1, 1970, and the date the 
password was last modified. 


min The minimum number of days that a password must be in ef- 
fect. 

max The maximum number of days that a password can be in effect. 

Operations Guide: sysadm 2-3 


1003-48607-00 


User Services 


2.2.3 Changing or Deleting Entries in Password Files 


The User Management Menu contains options for adding, changing, or delet- 
ing user entries from the password files. (Chapter P2 describes these op- 
tions.) If you want to update the files manually, use the passmgmt com- 
mand. (See passmgmt(1M) in the Reference Manual.) 


These two methods produce different results when used to remove a user ac- 
count. If you use the deluser command from the User Management Menu to 
delete a user login, all of the user’s files and directories are also removed. If 
you use the passmgmt command to remove a user login, the user’s files will 
not be deleted. 


If you need to change a user’s password, you must use the passwd command. 
If a user forgets a password or you need to change a password for another 
reason, login as root. Then issue the passwd command, followed by the 
user’s login name. (The # prompt shows you are root.) 


# passwd abc 
New password: 


Re-enter new password: 


The new password does not appear on the screen as you type it. Because you 
ran this command as superuser (root), you were not prompted for the old 
password. After you change a password, ask the user to select a new pass- 
word immediately. 
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2.2.4 The /etc/group File 


Groups provide a means to establish ownership and access to files and direc- 
tories. Users with a community of interest can be identified as members of 
the same group. Each file created by a member of the group carries the 
group ID as a secondary identification. By manipulating the permissions as- 
signed to the file, the owner (or someone with the effective user ID of the 
owner) can grant read, write, or execute privileges to other group members. 


The /etc/group file stores information about the groups set up on your sys- 
tem. There is a separate line for each group. Following is a sample entry 
from this file: 


prog: :123:jqp, abe 


Each line contains four fields separated by colons: 


group name The group name can be from 8 to 8 characters long; the first 
character must be alphabetic. 


password The password field should not be used. 


group id The group ID is a number from 0 to 50000. It must not include 
acomma. Numbers below 100 are reserved. 


login names The login names listed here can use the newgrp command to 
switch to this group. 
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2.3 The User Environment 


This section describes environment variables, tells how the system-wide 
start-up files and individual start-up files are used, and discusses restricted 
shell programs. 


2.3.1 Environment Variables 


An array of strings called the environment is made available by exec(2) when 
a process begins. Because login is a process, the array of environment 
strings is made available to it. Figure 2-1 defines 12 environment variables 
for user abc. 


PS1=$ 

LOGNAME=abc 

PWD=/usr/abc 

HOME=/usr/abc 
PATH=:/bin:/usr/bin:/usr/lbin 
SHELL=/bin/sh 
MAIL=/usr/mail/abc 
TERM=5420 

PAGER=pg 

TZ=ESTSEDT 
TERMINFO=/usr/lib/terminfo 
EDITOR=vi 


Figure 2-1. Environment array for user abc. 


Other programs also use these environment variables. For example, the 
user’s terminal is defined as a 5420 (TERM=5420). When the user invokes the 
vi editor, vi checks the file (/usr/lib/terminfo) referenced by the TERMINFO 
variable, where it learns the characteristics of a 5420 terminal (such as the 
24-line screen). 


New strings can be defined at any time. By convention, they are defined with 
the variable in uppercase, followed by an equal sign, followed by the value. 
After defining an environment variable, the user can use the export state- 
ment to make the variable global. This means the variable will apply to any 
subshells started up during the login session. 
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2.3.2 Start-Up Files 


Start-up files are the key element in establishing an environment that allows 
users to communicate successfully with the computer. There are two types of 
start-up files: system-wide files that affect all users on the system and indi- 
vidual start-up files that can be different for each user. 


System Start-Up Files 


There are two system start-up files: the /etc/profile file contains values that 
apply to Bourne and Korn shell users; the /etc/csh.login file applies to C 
shell users. These files contain commands, shell procedures, and environ- 
ment variables. Whenever a user logs in, the login process executes the files. 
Figure 2-2 shows a sample /etc/.profile file. 


# The profile that all logins get before using their own .profile. 
trap "" 2 3 
export LOGNAME 
# Login and -su shells get /etc/profile services. 
# -rsh is given its environment in its .profile. 
case "$0" in . 
~su) 

export PATH 

a 
-sh) 

export PATH 

# Allow the user to break the Message of the Day only. 

trap “trap ‘’ 2" 2 

cat -s /etc/motd 

trap "" 2 

if mail -e 

then 

echo "you have mail" 

fi 

if [ ${LOGNAME} != root ] 

then 

news -n 

ER 
esac 
umask 022 
trap 2 3 


Figure 2-2. A sample /etc/profile. 
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The sample /etc/profile contains several interesting entries: 
¢ Some environment variables are exported. 


¢ The cat command is executed on a file named /etc/motd, causing the 
contents of that file to appear on the user’s terminal. (See “User Com- 
munications,” later in this chapter.) 


¢ Ifthe user is not root, the command news —n causes the names of news 
items to appear on the user’s terminal. (See “User Communications,” 
later in this chapter.) 


e Ifthe user has mail, the command mail -e causes a message about the 
waiting mail to appear on the user’s terminal. 


For information about the shell programming commands used in Figure 2-2, 
see sh(1) in the Reference Manual. 


Individual Start-Up Files 


Each user can have an individual start-up file that contains additional com- 
mands and variables to further customize the user’s environment. For 
Bourne and Korn shell users, the file is called .profile. For C shell users, 
there are two start-files: .login and .cshrc. These files are located in the 
user’s home directory and can contain whatever the user wants. If a local 
start-up file exists, it is executed at login time, after the system start-up file 
is executed. 


2.3.3 The umask Command 


A system default controls the permissions mode of all files or directories 
created by a user. The operating system assigns the default values of 666 for 
files and 777 for directories. That means that everyone automatically has 
read and write permission on files. For directories, everyone has read, write, 
and execute permission. (Execute permission on a directory means the abil- 
ity to move to the directory and to copy files from it.) 


Users can include the umask command in their individual start-up files. You 
can also include a umask command in the system-wide start-up files. This 
command alters the default permission levels by the amount specified. For 
example, the following line leaves the permission level for the owner un- 
changed, lowers the permission level for the group by 2, and reduces the per- 
missions for others to zero. 


umask 027 
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The system default was 666; this user mask changes it to 640, which trans- 
lates into read and write permission for the owner, read permission for the 
group, and no permission for others. 


2.3.4 Restricted Shell Program 


When a user logs in, the shell program specified in the /etc/passwd file 
starts up. For most users, this will be a standard shell program such as 
/bin/sh. If you want to limit the activities a user can perform, you can assign 
a restricted shell to the user. This type of shell prevents the user from per- 
forming these tasks: 


e Changing directories 
¢ Changing the value of the PATH environment variable 


¢ Specifying pathnames or command names containing a slash (/). (This 
means the user can access only the files or directories included in the 
present working directory or in $PATH.) 


¢ Redirecting output 


The restrictions are enforced after the user’s start-up file executes. 


The administrator can use a restricted shell strategy to limit certain users to 
the execution of a small number of commands or programs. By setting up a 
special directory for executables (/usr/rbin, for example) and setting the 
PATH environment variable so it references only that directory, the adminis- 
trator can restrict the user’s activities as appropriate. 
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2.4 User Communications Services 


The operating system offers several ways to communicate with users. Some of 
the most frequently used methods are described in this section. 


2.4.1 Message of the Day 


Information that you want to make available to all users can be placed in the 
/etc/motd file. The contents of this file appear on the user’s terminal when 
the user logs in. Typically, the system-wide start-up file contains this com- 
mand: 


cat /ete/motd 


When the login process executes the start-up file, it prints the text in 
/etc/motd on the user’s screen. 


Following is a typical message: 
5/30: The system will be unavailable from 6-llpm 


For this information to have any impact on users, you must use it sparingly 
and clean out outdated announcements. 


2.4.2 News Facility 


The /usr/news directory and the news(1) command also provide a means to 
communicate with users. The directory is used to store news items in text 
files. The news command is used to print the items on your terminal. 


If the system start-up file contains the following line, the names of files in the 
/usr/news directory print on a user’s terminal when the user logs in. 


news -n 


Item names appear only for current items, that is, items added to the 
/usr/news directory since the user last looked at the news. 


When you read a news item, an empty file named .news_time is written in 
your login directory. As with any other file, .news_time carries a time stamp 
indicating the date and time the file was created. When you log in, a compar- 
ison is made between the time stamp of your .news_time file and time stamp 
of items in /usr/news. 
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The news command is used to read news items. Users have a choice of sever- 
al possible actions: 


Read everything 
If a user issues the news command with no arguments, all news 
items posted since the last time the user issued the command print on 
the user’s terminal. 


Select some items 
If the news command is entered with the names of one or more items 
as arguments, only the specified items appear. 


Read and delete 
After issuing the news command, the user can stop any item from 
printing by pressing (Delete) Pressing (Delete) twice in a row stops the 
program. 


Ignore everything 
If a user doesn’t want to read the news items at the present time, the 
items can safely be ignored. Unless the user deletes the items, the 
item names will continue to appear each time the user logs in. 


Flush all items 
If a user doesn’t want to read the news items at all, there are a couple 
of techniques that will delete the items. The following command up- 


dates the time-accessed and time-modified fields of the news_time 
file. 


$ touch .news_time 
The next command prints the news items on the null device. 


$ news > /dev/null 


2.4.3 Broadcast Messages to All Users 


The wall command allows you to write messages to all users who are logged 
in on the system. When you need to use this command, first become su- 
peruser. This is necessary to override the mesg n command that many users 
include in their individual start-up files. (The mesg n command prevents 
messages sent by other users, via the write command, from appearing on the 
user’s terminal.) It is best to reserve the wall command for those times 
when you need to ask users to log off the system. Chapter P2 shows an ex- 
ample of the wall command. 
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2.4.4 mail and mailx 


The operating system offers two electronic mail utilities that allow users to 
communicate among themselves. If your system is connected to other sys- 
tems by networking facilities, mail and mailx can also be used to communi- 
cate with people on other systems. 


mail is the basic utility for sending messages. mailx uses mail to send and 
receive messages, but adds many other features that are useful for reading, 
storing, and sending messages. 


When mailx is used, a set-up file is helpful. You can find a description of a 
.mailrc set-up file under mailx(1) in the Reference Manual. 


2.5 Anticipating User Requests 


As system administrator, you can expect users to look to you to help solve a 

variety of problems. In addition to the system log described in Chapter 3, you 

will find it helpful to keep a user trouble log. The problems that users run 

into fall into patterns. If you keep a record of how problems were resolved, 

you will not have to start from scratch when a problem recurs. @ 


2.5.1 Trouble Reporting 


It is strongly recommended that you develop an organized way for users to 
report problems. The following page contains a sample Trouble Report that 
can be used to report system problems. 
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TROUBLE REPORT 


Machine 


Program running 


Production or development 
Type 
Symptoms 


Scope 


Error Messages 


Person reporting 


Location 
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System Operations and Run Levels 


3.1 Introduction 


This chapter provides detailed information about day-to-day operations and 
system run levels. Chapter P3 in the first half of this manual contains the 
procedures you can use to remove power from the system and to change the 
system run level. 


This chapter includes these topics: 
© General operating policy 


Guidelines for balancing the needs of system maintenance and the in- 
terests of your user community, suggestions for record keeping, and 
lists of important administrative directories and files 


¢ Operating Levels 


Definitions of the operating levels and a description of how they are con- 
trolled 


3.1.1 General Operating Policy 


Many administrative tasks require the system to be shut down to a run level 
other than the multiuser state. When the system is in another run level, reg- 
ular users cannot access the system. Try to schedule tasks requiring that you 
change the system state for times when they will interfere the least with the 
activities of the user community. 


Try to provide the user community as much notice as possible about events 
affecting the use of the machine. When the system must be taken out of ser- 
vice, also tell the users when to expect the system to be available. Use the 
news facility (/ete/news) and the Message of the Day (/etc/motd) to keep 
users informed about changes in hardware, software, policies, and proce- 
dures. 
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At your discretion, the following items should be done as prerequisites for 
any task that requires the system to leave the multiuser state. 


1. When possible, schedule these tasks for periods of low system use. Use 
the Message of the Day (/etc/motd) to inform users of the schedule. 


2. Check to see who is logged in before taking any actions that would af- 
fect a logged-in user. The /ete/whodo and /bin/who commands can be 
used to see who is on the system. 


3. Ifthe system is in use, give your users advanced warning about changes 
in system states or pending maintenance actions. For immediate ac- 
tions, use the /etc/wall command to send a broadcast message announc- 
ing that the system will be taken down at a given time. Give the users a 
reasonable amount of time to terminate their activities and to log off be- 
fore you take the system down. 


3.1.2 Maintaining a System Log 


In a multiuser environment, it is strongly recommended that a complete set 
of records be maintained. A system log book can be a valuable tool when 
troubleshooting transient problems or when trying to establish system 
operating characteristics over a period of time. Following are some items you 
might want to enter into your log book: 


¢ Maintenance records (dates and actions) 

¢ Printouts of error messages and diagnostic phases 

¢ Records of equipment and system configuration changes (dates and ac- 
tions) 


The format of the system log and the types of items it contains should follow 
a logical structure. Think of the log as a diary that you update on a periodic 
basis. To a large measure, how you use your system will dictate the form and 
importance of maintaining a system log. 
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3.1.3 Administrative Directories and Files 


This section describes the directories and files that are frequently used by a 
system administrator. For more detail about the purpose and contents of 
these directories and files, see Appendix A. For additional information on the 
formats of the system files, refer to Section 4 in the Reference Manual. 


3.1.4 Root Directories 


The following directories, which are located in the root filesystem (/), are im- 
portant for system administration. 


bin Contains public commands. 

dev Contains special files that define all of the devices on the sys- 
tem. 

etc Contains administrative programs and tables. 

lib Contains public libraries. 


lost+found Used by fsck(1M) to save disconnected files. 


mnt Used to temporarily mount filesystems. 

save Used by the menu system for saving data. 

tmp Used for temporary files. 

usr Used to mount the /usr filesystem (see Chapter 4 for a de- 


scription of this filesystem). 


3.1.5 Important System Files 


The following files and directories are important in the administration of the 
computer: 


/etc/checklist Defines a default list of filesystem devices to be checked by 
/ete/fsck. 


/etc/fstab Specifies the filesystem(s) to be mounted by /etc/mountall. 
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/etc/gettydefs 


/etc/group 
/etc/init.d 


/etc/inittab 
/etc/motd 


/etc/passwd 
/etc/profile 


/etce/rcO 


/etc/rc0.d 


/etce/rc2 


/ete/rc2.d 


/etc/re.d 


3-4 


Contains information used by /etce/getty to set the speed and 
terminal settings for a line. 


Describes each group to the system. 


Contains executable files used in upward and downward 
transitions to all system run levels. These files are linked to 
files beginning with S (start) or K (stop) in /etc/ren.d, where 
n is replaced by the appropriate run level. 


Contains the instructions to define the processes created or 
terminated by /etc/init for each initialization state. 


File containing a brief Message of the Day, which is output 
by the system start-up files. 


File identifying each user to the system. 


File containing the standard (default) environment for all 
Bourne and Korn shell users. 


File that executes shell scripts in /etc/rc0.d and /etc/shut- 
down.d directories for transitions to system run-levels 0, 5, 
and 6. This file is executed by /ete/shutdown. > 


Directory containing files executed by /ete/rc0 for transitions 
to system run-levels 0, 5, and 6. Files in this directory are 
linked from files in the /etc/init.d directory and begin with 
either a K or an S. K indicates processes that are stopped 
when entering run levels 0, 5, or 6; S indicates processes that 
are started. 


File, executed by /ete/init, that executes shell scripts in 
/etc/rc2.d and /etc/rc.d on transitions to run level 2. 


Directory containing files executed by /etc/re2 for transitions 
to run levels 2 and 3. Files in this directory are linked from 
files in the /etc/init.d directory and begin with either a K or 
an S. K indicates processes that should be stopped when en- 
tering run levels 2 or 3; S indicates processes that should be 
started. 


Directory containing executable files that carry out the vari- 
ous functions needed to initialize the system to run level 2; 
they are executed when /ete/rc2 is run. This directory is 
maintained only for compatibility. 
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/ete/save.d Directory containing files that are used by the system admin- 
istration menu commands associated with backing-up data. 


/etc/shutdown File containing a shell script that gracefully shuts down the 
system in preparation for system backup or for scheduled 
downtime. 


/etc/shutdown.d 
Directory containing executable files that carry out the vari- 
ous functions needed to transition the system to the single- 
user state (run-levels 1, s, or S). This directory is main- 
tained only for compatibility. 


/ete/ TIMEZONE 
File used to set the time zone environment variable TZ. 


/etc/utmp File containing the information on the current run-state of 
the system. 

/etc/wtmp File containing a history of system logins. 

/usr/adm/sulog 


File containing a history of su command usage. This file 
should be checked periodically for size. 


/usr/lib/cron/log 
File containing a history of all actions taken by /ete/cron. 
This file should be checked periodically for size. 


/usr/lib/help/HELPLOG 
File containing a history of all actions taken by 
/usr/bins/help. 


/usr/lib/spell/spellhist 
File containing a history of all words that spell fails to 
match. 


/usr/news Directory containing news files. This directory should be 
checked periodically and old files should be discarded. 


/usr/options Directory containing files that identify the utilities that are 
installed on the system. 


/usr/spool/cron/crontabs 
Directory containing crontab files for the adm, root, and sys 
logins and for ordinary users listed in cron.allow. 


Appendix A describes each of these files in more detail. 
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3.2 Operating Levels 


After you have set up your computer for the first time (plugging it in, hooking 
all the hardware together, installing the system software, booting it, running 

the setup programs), you and other users can use the system. Whenever you 

turn it on (including the first time), the system comes up in a multiuser envi- 

ronment. Following are some characteristics of this environment: 


° The filesystems are mounted. 
¢ The cron daemon is started for scheduled tasks. 


¢ The basic networking functions of uucp (if added to the system) are 
available. 


¢ The LP spooling and scheduling functions are available for use. 


¢ Users can login. gettys are spawned on all connected terminal lines 
having a respawn entry in /etc/inittab. (gettys are not on when the 
system is installed. You have to turn them on yourself.) 


This is defined as the multiuser state. It is also referred to as init state 2 be- 
cause all activities involved in initializing the system are under the control of 
the init process. The “2” refers to entries in the special table /etc/inittab 
used by init to initialize the system to the multiuser state. 


Not all activities, however, can be performed in the multiuser state. For ex- 
ample, if you were able to unmount a filesystem while users were accessing 
it, a lot of data could be lost. For unmounting filesystems and other system 
administration tasks, there is a need for another state, the single-user state. 


The single-user state is an environment in which only the console has access 
to the system and only the root filesystem is mounted. You are free to do 
tasks that affect filesystems and system configuration because you are the 
only one on the system. 


There are other system states (see Figure 3-1), but first a note of clarification. 
One of the more confusing things about the discussion of system states is that 
there are many terms used to identify the same thing: the particular operat- 

ing level of the system. 


For example, the system state is also called the run state, the run level, the 
run mode, or the init state. Similarly, each system state can be referred to in 
a number of ways. For example, the single-user state is also called single- 
user mode or run level 1. 
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In any case, each state or run level clearly defines the operation of the com- 
puter. Table 3-1 defines each run level. 


Table 3-1 
System States 


Run 
Level Description 


Power down; takes the system to firmware mode, where it 
is safe to shut off power to the system. You can also run 


stand-alone programs. 


1,s,orS | Single-user mode is used to install or remove software 
utilities, run filesystem backups and restores, and check 
filesystems. Although s and 1 both go to single user state, 
s kills only those processes spawned by init and does not 
unmount filesystems. State 1 unmounts everything except 
root and kills all user processes, except those that relate 
to the console. 


Multiuser mode is the normal operating mode for the sys- 
tem. The default is that the root (/) and user ( /usr ) 
filesystems are mounted. 


User-defined run state. 
User defined run state. 


Firmware mode; same as run level 0. 


This mode is used to halt and reboot the operating sys- 
tem. The system comes up in multiuser mode (run lev- 
el 2). 
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3.2.1 How init Controls the System State 


The operating system always runs in one state or another. The actions that 
cause the various states to exist are under the control of the init process, 
which is the first general process created by the system at boot time. It reads 
the file /etc/inittab, which defines the processes that exist at each run level. 


In the case of the multiuser state (run level 2), init scans the file for entries 
having a tag for the run level (the tag is a 2) and executes everything after 
the last colon (:) on the line containing the tag. These tags represent the run 
levels in Table 3-1. 


Following are entries from a sample /etc/inittab. (It is unlikely that your file 
will look exactly like this example; /etc/inittab changes from one configura- 
tion to another.) 


beck: :sysinit:/etc/bcheckre >/dev/console 2>&1 
bdf::sysinit:/etc/bdflush >/dev/console 2>&1 & 

dvb: :sysinit:/etc/devbuild-a >/dev/console 2>&1 
is:2:initdefault: 

so:056:wait:/etc/rcO0 >/dev/console 2>41 

sl:l:wait:/etc/rel >/dev/console 2>41 

s2:23:wait:/etc/re2 >/dev/console 2>&1 

s3:3:wait:/etc/rc3 >/dev/console 2>&1 

fw:5:wait:/etc/uadmin 2 0 >/dev/console 2>61 

RB:6:wait:echo "\nThe system is being restarted." >/dev/console 2>&1 
rb:6:wait:/etc/uadmin 2 1 >/dev/console 2>&1 
pf:s1234:powerwait:/etc/powerfailpowerfail 1> /dev/console 2>&1 
po:s1234:powerokwait:/etc/powerfailpowerok 1> /dev/console 2>&1 
pw:234:respawn:/etc/pwdhd >/dev/null </dev/null 2>61 
co:234:respawn:/etc/getty syscon console sqnt200 
ac:234:off:/etc/getty altcon console hp700 
GAAA:234:respawn:/etc/getty ttyGA/GAAA 9600 sqnt200 # 
GAAB:234:respawn:/etc/getty ttyGA/GAAB 9600 sqnt200 # 

GAAC :234:respawn:/etc/getty ttyGA/GAAC 9600 sqnt200 # 


The lines in /etc/inittab have this format: 
id:level:action:process 
¢ id is a label, from one to four characters long, that identifies an entry. 


Four-character id’s are typically used for entries defining terminal 
lines. 
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¢ level is zero or more numbers and letters (0 through 6, s, a, b, and ¢e) 
that determine the level(s) in which action is to take place. If level is 
null, the action is valid in all levels. 


* action can be one of the following: 


sysinit 


bootwait 


wait 


initdefault 


once 


powerfail 


respawn 


ondemand 


off 


Run process before init sends anything to the system 
console (Console Login:). 


Start process the first time init goes from single-user to 
multiuser state after the system is booted. (If initde- 
fault is set to 2, the process will run right after the 
boot.) init starts the process, waits for its termination, 
and, when it dies, does not restart the process. 


When going to level, start process and wait until it’s fin- 
ished. 


When init starts, it will enter level; the process field for 
this action has no meaning. 


Run process once and don’t start it again if it finishes. 


Tells init to run process whenever a direct powerdown 
of the computer is requested. 


If process does not exist, start it, wait for it to finish, 
and then start another. 


Synonymous with respawn, but used only with levels 
a, b, or ec. P 


When in level, kill process or ignore it. 


© process is any executable program, including shell procedures. 


¢ A pound sign (#) can be used to add a comment to the end of a line. Ev- 
erything after a # to the end of the line will be ignored by init. 


When changing levels, init kills all processes not specified for that level. 
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NOTE 


If letclinittab was removed by mistake and is missing during 
shutdown, init will enter the single-user state (init s). The /usr 
filesystem will remain mounted and processes not spawned by 
init will continue to run. You should replace /etclinittab be- 
fore changing states again. 


3.2.2 Entering the Multiuser State 
Powering Up 


When you power up your system, it will enter multiuser state by default. 
(You can change the default by modifying the initdefault line in your init- 
tab file.) In effect, going to the multiuser state follows these broad lines: 


1. You turn on the computer. 


2. The operating system is loaded and the early system initializations are 
started by init. 


3. The run level change is prepared by the /ete/re2 procedure. 


4. The system is made public via the spawning of gettys along the termi- 
nal lines. 


Early Initialization 


Just after the operating system is first loaded into core via the specialized 
boot programs (see boot(8) in the Reference Manual for more detail), the init 
process is created. It immediately scans /etc/inittab for entries of the type 
sysinit: 


beck: :sysinit:/etc/bcheckre >/dev/console 2>&1 
bdf::sysinit:/etc/bdflush >/dev/console 2>&1 & 
dvb: :sysinit:/etc/devbuild -a >/dev/console 2>&1 


They are executed in sequence and perform the necessary early initializa- 
tions of the system. Note that each entry indicates a standard input/output 
relationship with /dev/console. This is the way communication is esta- 
blished with the system console before the system has been brought to the 
multiuser state. 
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Preparing the Run-Level Change 


Now the system must be placed in a particular run level. First, init scans 
the table to find an entry that specifies an action of the type initdefault. If it 
finds one, it uses the run level of that entry as the tag for selecting the next 
entries to be executed. In our sample /etc/inittab, the initdefault entry 
specifies run level 2 (the multiuser state) as the tag to select and execute oth- 
er entries: 


is:2:initdefault: 

$2:23:wait:/etc/rce2 >/dev/console 2>&1 
pf:s1234:powerwait:/etc/powerfail powerfail 1> /dev/console 2>&1 
po:s1234 :powerokwait:/etc/powerfailpowerok 1> /dev/console 2>&1 
pw:234:respawn:/etc/pwdhd >/dev/null </dev/null 2>61 
co:234:respawn:/etc/getty syscon console hp700 
ac:234:o0ff:/etc/getty altcon console hp700 
GAAA:234:respawn:/etc/getty ttyGA/GAAA 9600 sqnt200 # 
GAAB:234:respawn:/etc/getty ttyGA/GAAB 9600 sqnt200 # 
GAAC:234:respawn:/etc/getty ttyGA/GAAC 9600 sqnt200 # 


The other entries shown above specify the actions necessary to prepare the 
system to change to the multiuser run level. First, /ete/re2 is executed. It 
executes all files in /etc/rc2.d that begin with the letter S. It then executes 
all the files in the /etc/rc.d directory, accomplishing (among other things) the 
following: 


¢ Sets up and mounts the filesystems. 

¢ Starts the cron daemon. 

¢ Displays the current system hardware configuration. 
¢ Makes uucp available for use, if installed. 

¢ Makes the LP system available for use, if installed. 

¢ Starts a getty for the console. 

¢ Starts the hard disk error logging daemon. 

¢ Starts a getty on terminal lines. 


The full multiuser environment is now established and your system is avail- 
able for users to log in. 
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3.2.3 The System Life Cycle 
Changing Run Levels 
Changing run levels follows these broad lines: 


1. Enter a command that directs init to execute entries in /etc/inittab for 
a new run level. 


2. Key procedures such as /etc/shutdown, /ete/rc0, /etc/re2, and 
/etc/rc8 are run to initialize the new state. 


3. The new state is reached. If it is either state 1 or 5, you can proceed. 


Run Level Directories 


Run levels 0, 2, and 3 each have a directory of files that are executed in tran- 
sitions to and from that level. These directories are rc0.d, rc2.d, and rc3.d, 
respectively. All files in these directories are linked to files in /etc/init.d. 
The run-level filenames look like this: 


S00name 
or 


K00name 
The filenames can be split into three parts: 


SorK The first letter defines whether the process should be started (S) or 
stopped (K) upon entering the new run level. 


00 The next two characters are a number from 00 to 99. They indicate 
the order in which the files will be started (S00, S01, S02, and so on) 
or stopped (K00, K01, K02, and so on). 


name The file in /etc/init.d that this file is linked to. 


For example, the init.d file cron is linked to the rc2.d file S75cron and rc0.d 
file K70cron. When you enter init 2, this file is executed with the start op- 
tion: sh S75cron start. When you enter init 0, this file is executed with the 
stop option: sh K70cron stop. This particular shell script will execute 
/usr/bin/cron when run with the start option and kill the cron process 
when run with the stop option. 
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Because these files are shell scripts, you can read them to see what they do. 
You can modify the files, though it is preferable to add your own since the 
delivered scripts may change in future releases. To create your own scripts 
you should follow these rules: 


¢ Place the file in /etc/init.d. 


¢ Link the file to files in appropriate run state directories by using the 
naming convention described earlier. 


° Have the file accept the start and/or stop options. 


Going to Single-User Mode 


At times you will need to perform some administrative functions in the 
single-user mode. The normal way to go to single-user mode is through the 
/etc/shutdown command. This procedure executes all of the files in the 
/etc/rc0.d and /etc/shutdown.d directories by calling the /ete/rc0 procedure. 
The following steps are performed during the shutdown: 


¢ Close all open files and stop all user processes. 

¢ Stop all daemons and services. 

¢ Write all system buffers out to disk. 

¢ Unmount all filesystems except root. 
The entries for single-user processing in the sample /etc/inittab are as fol- 
lows: 


sl:l:wait:/etc/rcl >/dev/console 2>61 
pf:s1234:powerwait:/etc/powerfailpowerfail 1> /dev/console 2>&1 
po:s1234:powerokwait:/etc/powerfailpowerok 1> /dev/console 2>&1 


There are two major ways to start the shutdown processing: 
¢ Enter the shutdown -il command (recommended). 


¢ Enter the init 1 command, which forces the init process to scan the 
table. The first entry it finds is the s1 entry, which starts the shutdown 
processing. 


Now the system is in the single-user environment and you can perform the 
appropriate administrative tasks. 
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Going to Run Levels 5 or 6 


To go to the firmware mode or to reboot the system, use the shutdown com- 
mand with the -i5 or the -i6 option. Note that the pertinent entries in 
/etc/inittab are similar: 


so:056:wait:/etc/rc0 >/dev/console 2>&1 

fw:5:wait:/etc/uadmin 2 0 >/dev/console 2>&1 

RB:6:wait:echo "\nThe system is being restarted." >/dev/console 2>&1 
rb:6:wait:/etc/uadmin 2 1 >/dev/console 2>&1 


For both system states, the /ete/rc0 procedure is called. Then the /etc/uad- 
min procedure, with different arguments for each state, is called. This pro- 
cedure invokes the uadmin(2) system call, which directly prepares either 
system state. 


The computer stays in state 5 as long as you want it to. It stays in state 6 
briefly to restart the entire system initialization. Both states are similar, 
however, since they exist when the computer is under firmware control. 


Turning the System Off 


The final step in the life cycle of the system is turning it off. The following 
entry applies to powering the system down. 


so:056:wait:/etc/rc0 >/dev/console 2>&1 


One way to turn the system off is to invoke the /etc/shutdown -i0 command. 
The /etc/shutdown and /etc/rc0 procedures are called to clean up and stop 
all user processes, daemons, and other services and to unmount the filesys- 
tems. When this is done, you can turn off the power to the system. 
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4.1 Introduction 


This chapter provides information about filesystems and their maintenance. 
Chapter P4 in the first half of this manual contains procedures you can use to 
maintain filesystems and to monitor disk use. 


This chapter describes filesystems, tells how to monitor disk space use, how 
to back up and restore filesystems, and how to check a filesystem for 
directory consistency. 


4.2 Filesystems 


A filesystem is a combination of directories and files arranged in a 
hierarchical “tree” structure. A directory is a file that contains other files or 
@ directories. Each filesystem begins with a directory that serves as the root for 
the filesystem. The root filesystem is the starting point for the operating 
system itself. A slash () represents the root directory for this filesystem. 


You can attach, or mount, other filesystems at any point on the already 
existing tree structure. A filesystem is attached at a directory called a 
mountpoint. Figure 4-1 shows the /usr directory, which can be used as the 
mountpoint for the /usr filesystem. It provides a connection between the root 
filesystem and the contents of the /usr filesystem. The filesystem has the 
same name as its mountpoint (/usr in this example). 
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Figure 4-1. The root filesystem. The usr directory is a mountpoint for 
the usr filesystem, which contains the tmp, bin, and lib directories. 


A filesystem must be mounted to allow users access to the files it contains. 
Users cannot access the files in an unmounted filesystem. 


In most cases, the boundaries between filesystems are invisible to users. If 
users have the appropriate permissions for the files in another filesystem, 
they can access those files and can execute most operating system commands. 


Each directory contains two entries: a dot (.) that represents the current 
directory, and a dot dot (..) that represents the parent directory. The root 
directory for each filesystem also contains these entries. When the filesystem 
is mounted, .. points to the parent of the mountpoint directory. For root itself 
(the topmost directory), the .. points back to itself. 


4.2.1 Filesystems and Disks 


Filesystems give you a means to spread files among the disk drives in your 
system. Each disk can contain one or more filesystems. 


To accommodate filesystems, each disk is divided into partitions labeled 0, 1, 
2, 3, and so on. The system administrator can specify the number and size of 
the partitions on a particular disk. If a disk contains multiple disk platters, a 
partition includes the same portion of each platter. 
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The first 8K block of usable space on each disk is the bootblock. It contains 
the startup code necessary to bootstrap, or start up, the system. The next 8K 
block contains the VTOC (volume table of contents), which describes the 
partitions found on that disk. The remaining blocks on the disk are grouped 
into one or more larger pieces called partitions. 


Each partition can contain a filesystem. Because partitions can be different 
sizes, a disk can accommodate filesystems of different sizes. 


When a filesystem is created on a disk partition, parameters are set to adapt 
the filesystem to the characteristics of the disk. The parameters include such 
considerations as the number of blocks per track and the speed at which the 
platter rotates. This results in more efficient data transfers between the disk 
and the main computer memory. This in turn affects the speed of the 
operating system. 


Figure 4-2 shows a disk containing the root filesystem on partition 0 and the 
/usr filesystem on partition 7. This is an example only. On your system, 
these filesystems might be assigned to different partitions, depending on your 
hardware. The partitions can also be located in different areas of the disk. 
For example, partition 0 might be the innermost partition, as in this 
example, or it might be in the middle of the disk. 
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Figure 4-2. Disk partitions containing the root and usr 
filesystems. 


Cylinders 


To understand what happens when a filesystem is created within a partition, 
you should be familiar with the structure used to store data on a disk. 


Partitions are measured in disk sectors, which typically contain 512 bytes. A 
disk platter contains a large number of tracks; each track contains a specific 
number of disk sectors. The read/write head moves in or out to go from track 
to track when it needs to read data from the disk or write data to the disk. 


Data transfers take place in blocks, which can vary in size from one 
filesystem to another. The block size must be a multiple of the sector size (for 
example, a multiple of 512 bytes). A typical DYNIX/ptx filesystem uses disk 
blocks containing either 4096 or 8192 bytes. A filesystem using 4096-byte 
blocks is called a 4K filesystem; a filesystem using 8192-byte blocks is called 
an 8K filesystem. 
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Figure 4-3 shows the relationship between the disk sectors, tracks, and 
blocks on a disk platter. Although the diagram shows only a few tracks, a 
disk platter typically contains several hundred tracks. 
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Figure 4-3. The relationship between disk sectors, tracks, and file 
blocks. In this example, there are 16 sectors per block (8192 bytes per 
block) and four blocks per track. 
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The tracks themselves are grouped into cylinders; each cylinder contains a 
specific number of tracks. The read-write head can access all tracks within a 
cylinder without moving to another position. A cylinder includes the same 
set of tracks from each usable platter within the disk pack. Figure 4-4 shows 
a few of the cylinders on a sample disk pack. 
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Figure 4-4. Cylinders on a sample disk pack. 


Although this diagram shows only two cylinders, a disk can include several 
hundred cylinders. The type of disk you are using determines the number of 
cylinders per disk, the number of tracks per cylinder, and the number of 
sectors per track. 


The cylinders within a partition are divided into cylinder groups. Each group 
contains several contiguous cylinders. The filesystem tries to spread its files 
and directories across the cylinder groups and to store data for a specific file 
within the same cylinder group. The purpose of doing this is to minimize the 
number of times the read/write head has to move, resulting in faster data 
transfers. 
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4.2.2 The Filesystem Structure 


A filesystem contains two special blocks located at the beginning of the 
partition. The first block is called the boot block. If the filesystem is involved 
in booting the operating system, the block stores booting procedures. If the 
filesystem is not involved in booting, the boot block is empty. 


The next block is called the superblock. It contains information about the 
filesystem, including its name, the number of data blocks it contains, and the 
maximum number of files it can contain. It also stores disk pack labels and 
state information about the disk. 


The superblock is created when the filesystem is created. Copies of the 
superblock are kept throughout the filesystem in case the original superblock 
is lost. Figure 4-5 shows the layout of a sample disk. 


DATA 


8K boot block 
8K superblock 


DATA 


1003-49376A 


Partition 1 
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Figure 4-5. Disk layout. Each disk has a boot block and a VTOC. 
Each partition can contain a filesystem that includes a boot block, a 
superblock, and data blocks. 


Each cylinder group within a filesystem contains data storage blocks, a copy 
of the superblock, a set of inodes, and information about the free blocks in the 
cylinder group. When a user creates a file, the operating system uses this 
information to locate blocks in which to store the contents of the file. 
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Inodes 


Inodes contain information about the files in the filesystem. When a 
filesystem is created, multiple inodes are created within each cylinder group. 
Typically, more inodes are created than will be used. When a user creates a 
file or directory, the filesystem uses an available inode to store the following 
information about that file or directory. 


¢ The owner of the file 

° The owner's group 

¢ The type of file (regular, directory, character, block, FIFO) 

¢ The access permissions for the file 

¢ The size of the file in bytes 

¢ The number of links to the file 

¢ The time the file was last accessed 

¢ The time the file was last modified (written to disk) 

¢ The time the inode itself was last modified 

¢ The location of the disk blocks storing the data in the file 
The access time for the file changes whenever the file is read or written to 
disk. The modification time for the file changes whenever the file is written 
to disk. The modification time for the inode changes either when the file is 


modified or when the access permissions, number of links, or file owner 
changes. 


Data Blocks 


For a file, data blocks contain the contents of the file. For a directory, data 
blocks contain the name, inode number, and size of each entry in the 
directory. 


Frequently, the contents of a file are not stored in contiguous data blocks. 
When the operating system needs to write the contents of a file from disk to 
memory, the inode information tells the operating system where to find the 
appropriate data blocks. 
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@ Fragments 


Many files are not large enough to fill an entire data block. To avoid wasting 
the remaining space in the block, the filesystem divides each block into 
fragments. The fragment size is specified at the time the filesystem is 
created. The size must be a multiple of the sector size (for example, a 
multiple of 512 bytes). It must also evenly divide the number of bytes in a 
block. 


Typically, a fragment is either one-half, one-quarter, or one-eighth of a block. 
For example, a block containing 8192 bytes could contain either two 
4096-byte fragments, four 2048-byte fragments, or eight 1024-byte fragments. 


If a file does not require an entire data block for storage, the remaining 
fragments in the block are available to store the contents of another file. 


On an 8K filesystem, if a file uses an indirect pointer (as described in 
“Indirect Blocks”) and contains more than 96 Kbytes, it will not use 
fragments. 


Indirect Blocks 


The operating system uses a chain of address blocks to locate the data blocks . 
@ storing the contents of a file. An inode contains addresses for 15 data blocks. 

The first 12 addresses (address 0 through 11) point to data storage blocks 

containing the contents of the file. Only the last direct block pointer in use 

can point to a fragment. 

Address 12 contains a pointer to an indirect block. This block stores 

addresses for additional data storage blocks. 


Address 13 contains a pointer to a double indirect block. This block contains 
addresses for a set of indirect blocks, which contain the addresses of data 
storage blocks. 


Address 14 contains a pointer to a triple indirect block. This block contains 
the addresses for a set of double indirect blocks. These blocks point to a set 
of indirect blocks, which contain addresses for data storage blocks. 
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Figure 4-6 shows how the addresses in an inode point to the disk storage 
blocks that actually contain the file. 
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Figure 4-6. Locating disk storage blocks. In most cases, the blocks 
are filled up in order, starting at the blocks pointed to by address 0. Ifa file 
is large enough to fill the blocks pointed to by addresses 0 through 11, it will 
not use fragments. On an 8K filesystem, it is virtually impossible for a file 
to fill the triple indirect block. 
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4.3 Maintaining Filesystems 


After a filesystem has been created and made available to users, you should 
perform the following tasks on a regular basis: 


¢ Monitor disk usage. 
¢ Back up and restore filesystems. 


© Check for filesystem consistency. 


4.3.1 The Need for Policies 


Filesystem administration should be based on establishing a set of policies 
that are appropriate for your organization. There can be no hard-and-fast 
rules for such things as the size of filesystems, the number of users in a 
filesystem, the way in which backups are done, the extent to which users can 
be allowed to keep inactive files in the system, or the amount of disk space a 
single user is entitled to occupy. These questions can be resolved only within 
the context of the organization. The number of users, the type of work they 
are doing, the number of files needed—all are variables. The responsible 
@ administrator must determine what best meets the needs of the organization. 


4.3.2 Shell Scripts for Filesystem Administration 


Once policies have been agreed on, many of the routine tasks connected with 
filesystem administration can be incorporated in shell scripts. For example, 
disk use monitoring can be handled through shell scripts that do the 
monitoring for you and then transmit messages to the system console when 
exceptions are detected. Here are a few ideas: 


* Use a shell script running under cron(1M) control to investigate free 
blocks and free inodes and to report on filesystems that fall below a 
given threshold. 


¢ Use a shell script to do automatic cleanups of files that grow. 


¢ Use a shell script to locate excessive disk space usage. 
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4.3.3 Monitoring Disk Usage 


It is important to monitor the disk usage within a filesystem. Following are 
some areas to watch: 


¢ Ifthe percentage of disk space used is not monitored regularly, it can 
increase until the allocated space is used up. This causes processes to 
run very slowly, or not at all. The system spends its time putting out a 
message about being out of file space. 


¢ There is a natural tendency for users to forget about files they no longer 
use; the files just sit there taking up space. 


¢ Some files grow larger as a result of normal system use. It is an 
administrative responsibility to keep them under control. 


¢ Some directories, notably /tmp, accumulate files during the day. When 
the system is first brought up, /tmp needs to have enough free blocks to 
carry it through to shutdown(1M). 


The following tasks can help keep disk space uncluttered: 

¢ Monitor the percent of disk space used. 

¢ Monitor files and directories that grow. 

¢ Identify and remove inactive files. 

¢ Identify large space users. 
Chapter P4, “Filesystem Administration Procedures,” shows how to use the 
System Administration menus to perform these tasks. This section 


supplements the procedures and shows some operating system commands 
that you can use. 


4.3.4 Monitoring Percent of Disk Space Used 


You can monitor disk space at any time to see how close to capacity your 
system is running. Until a pattern has emerged, it is advisable to check 
every day. The following example uses the df(1M) command to check disk 
usage. 


$ df-t 


The -t option lists total allocated blocks and inodes as well as free blocks and 
inodes. If you do not specify a filesystem on the command line, the command 
lists information about all mounted filesystems. 
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4.3.5 Monitoring Files and Directories that Grow 


Almost any system that is used daily has several files and directories that 
grow through normal use. Following are some examples: 


/etc/wtmp History of system logins 
/usr/adm/sulog History of su commands 
/usr/lib/cron/log History of actions of /etc/cron 
/usr/lib/help/HELPLOG Actions of /usr/bin/help 
/usr/lib/spell/spellhist Words that spell(1) fails to match 


The frequency with which you should check growing files depends on how 
active your system is and how critical the disk space problem is. Following is 
a good technique for keeping files down to a reasonable size. It uses a 
combination of tail(1) and mv(1): 


$ tail -50 /usr/adm/sulog > /tmp/sulog 


$ mv /tmp/sulog /usr/adm/sulog 


This sequence puts the last 50 lines of /usr/adm/sulog into a temporary file, 
then moves the temporary file to usr/adm/sulog. This step truncates the file 
to the 50 most recent entries. 


4.3.6 Identifying and Removing Inactive Files 


Part of the job of cleaning up heavily loaded filesystems involves locating and 
removing files that have not been used recently. The commands you might 
use to do this work are described later in this section. Following are some 
policy decisions for you to consider. 


¢ How long should a file remain unused before it becomes a candidate for 
removal? 


¢ Should users be warned that old files are about to be purged? 


¢ Should the files be archived or permanently removed? 


The find(1) command locates files that have not been accessed recently. It 
searches a directory tree, beginning at a point named on the command line, 
looking for filenames that match a given set of expressions. When find 
locates a match, it performs a specified action on the file. Following is an 
example. 
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$ find /usr -type f -mtime +60 -print > /tmp/deadfiles & 


Here is what the example shows: 


/usr Specifies the pathname where find is to start. Presumably, your 
machine is organized in such a way that inactive user files will not 
often be found in the root filesystem. 


-typef Tells find to look only for regular files and to ignore special files, 
directories, and pipes. 


-mtime +60 
Lists files that have not been modified in the previous 60 days. 


-print Tells find to print the pathnames of files matching the -type and 
-mtime expressions. 


> /tmp/deadfiles & 
Directs the output to a temporary file and indicates that the process 
is to run in the background. This is useful if you expect a 
substantial amount of output. 


The sysadm fileage(1) command can be used to produce similar information 
(see Chapter P4). 


4.3.7 Identifying Large-Space Users 


The following questions can help you determine what the limits for user disk 
space should be on your system. 


¢ On your system, what constitutes a reasonable amount of disk space for 
a user? 


¢ Ifa user exceeds the normal amount by 25%, is it possible that the 
user’s job requires extraordinary amounts of disk space? 


¢ Is your system as a whole running short of space? Do your existing 
limits need to be reviewed? 
Two commands produce useful information in this area: du(1) and find(1). 


du produces a summary of the block counts for files or directories named on 
the command line. For example, the following command lists the block count 
for all directories in the /usr filesystem. 


$ du/usr 
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Optional arguments allow you to refine the output. For example, du -s can 
be run against each user’s login to monitor individual users. 


The find command can be used to locate specific files that exceed a given size 
limit. 
$ find /usr -size +10-print 


This example lists the pathnames of all files and directories in the /usr 
filesystem that are larger than ten 512-byte blocks. The sysadm filesize(1) 
command can produce similar information (see Chapter P4). 


4.4 Filesystem Backup and Restore 


The importance of establishing and following a filesystem backup plan is too 
often not appreciated until information is lost and cannot be recovered. 
Backing up a filesystem takes time. Trying to recover lost or damaged data 
from paper records and best-guess-work takes even more time. The value of 
an effective system backup plan lies in the ability to recover lost or damaged 
data easily. 


System Administration menus are provided to help you with complete and 
incremental filesystem backups and with restoring backup data. The ability 
to copy selected directories and files to tape is provided by the sysadm store 
command or the find(1) command with epio(1) or ctecpio(1M). You can 
restore directories and files by using sysadm restore(1) or the appropriate 
cpio command. 


Your backup plan can include any or all of these methods. It is important, 
however, that you evaluate the need for system backup and form a backup 
plan. This plan should be reevaluated as the use of your system changes. A 
System Administration facility for establishing a check of your backup 
schedule is available; it is described under “Backup Schedule Reminder” later 
in this section. 


4.4.1 Complete Backup 


The complete backup provided by the System Administration backup 
facilities copies the directories and files from a specified mounted filesystem 
to tape. Complete and incremental backups combine to form a unified 
backup strategy. Complete backups can be done without intervening 
incremental backups, but incremental backups must be preceded by at least 
one complete backup to provide the base. 
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4.4.2 Incremental Backup 


The incremental backup provided by the System Administration backup 
facilities copies files that have changed since the last backup. 


The incremental filesystem backup is fast in comparison to the time required 
to do a complete backup, because only files that have changed since the last 
prior backup (whether complete or incremental) are copied. However, while 
incremental backups save time, they may tie up a sizable number of tapes; 
restoring from incremental backups can result in your giving back all the 
time saved. 


Not all changed directories and files are copied in an incremental backup. 
The /etc/save.d/except file specifies files and directories that are not copied. 
Figure 4-7 shows a sample /etc/save.d/except file. 


The question of when to do a new complete backup is the critical point of a 
system backup plan. Here are some things to think about: 


¢ How much time do you want to devote to complete backups? Fewer 
tapes are required to maintain a backup library if a complete backup is 
done frequently. A complete backup, however, can take 8 or 10 times as 
long as any single increment. 


¢ How much time are you willing to devote to restoring a filesystem? All 
tapes of each incremental backup must be read to restore a filesystem 
completely. (This is a difficult decision to weigh properly. Ideally, you 
will never need to restore a whole filesystem from backup.) 


¢ What is the approximate rate of change in the filesystem under 
scrutiny? Do changes occur throughout the filesystem or in a small 
percentage of the files? If change is frequent and widespread, it may be 
best to schedule complete backups more often. If change is 
concentrated in a few files, perhaps selective backup should be a part of 
the overall plan. 
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ee 


# Patterns of filenames to be excluded 
# from saving by savefiles. 

# These are ed(1) regular expressions. 
# 


-news_timeS 
/.yesterday$ 
/a.outs 
/coreS 
/dead.answer$ 
/dead.letter$ 
/ed.hup$ 
/nohup.out$ 
/tmp/ 
*/etc/mnttab$ 
*/etc/save.d/timestamp/ 
*/etc/utmp$ 
*/etc/wtmp$ 
*/usr/adm/ 
“/usr/at/ 
“/usr/crash/ 
“/usr/dict/ 
“/usr/games/ 
“/usr/learn/ 
*/usr/news/ 
*/usr/spool/ 
*/usr/tmp/ 


Figure 4-7. Sample /etc/save.d/except file. 


4.4.3 Backup Schedule Reminder 


The File Management Menu contains a backup schedule reminder feature 


that lets you perform these tasks: 


¢ Schedule reminder messages that say, “If the machine is shut down 
within this time range, send a message to the console to do a backup of 


this filesystem.” 


e Schedule reminder checks that say, “If it gets to be this time and the 
machine has not been shut down, see if any reminder messages would 
have been sent had the machine been shut down.” 
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This reminder mechanism does not relieve you of the job of working out a 
reasonable schedule of backups. It merely nudges you about the schedule you 
have set up. Chapter P4 shows the steps needed to use the reminder feature. 
If you prefer, you can set up reminder notices using cron(1M) and 
crontab(1). 


4.4.4 Restoring a Filesystem from Backup 


You can restore individual directories and files or an entire filesystem from 
system backups. Use the sysadm restore(1) command if you need to do this 
(see Chapter P4 for examples). 


To restore a filesystem by using operating system commands, change to the 
appropriate directory and execute this command: 


$ epio -icdumv < device 


The backup tapes must be restored in the same order in which they were 
backed up. 
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4.5 Checking Filesystems 


This section describes problems that can corrupt a filesystem and tells how to 
use the fsck program to check for and to repair filesystem problems. 


4.5.1 What Can Go Wrong with a Filesystem 


Most filesystem corruption problems are caused by hardware failure, 
program interrupts, or incorrect procedures. 


Hardware Failure 


There is no effective way to predict when hardware failure will occur. The 
best way to deal with it is to be sure that recommended diagnostic and 
maintenance procedures are followed consistently. 


Program Interrupts 


It is possible that errors causing a program to fail might result in the loss of 
some data. Programs should be tested exhaustively before they are put into 
production with valuable data. 


Human Error 


Probably the greatest cause of filesystem corruption falls under this heading. 
Following are four rules that can help prevent errors from occurring. 


¢ Always check a filesystem before mounting it. Nothing complicates the 
problem of cleaning up a corrupt filesystem so much as allowing it to be 
used when it is bad. 


¢ Always use the sync command before shutting down the system and 
before unmounting a filesystem. 


¢ Never physically write-protect a mounted filesystem, unless it is 
mounted “read-only.” 


The random nature of these mishaps simply underscores the importance of 
establishing and observing good backup practices. It is the most effective 
form of insurance against data loss. 
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4.5.2 Checking a Filesystem for Consistency 


When the operating system is brought up, a consistency check of the 
filesystems is done automatically as part of the power-up process. The 
fsstat(1M) command is included as part of that process. fsstat returns a 
code for each filesystem that indicates whether the consistency checking and 
repair program, fsck(1M), should be run. 


These same commands, or sysadm checkfsys(1), should be used to check 
filesystems not mounted routinely as part of the power-up process. If 
inconsistencies are discovered, corrective action must be taken before the 
filesystems are mounted. The remainder of this section will acquaint you 
with the fsck utility, the type of checking it does in each of its phases, and 
the repairs it suggests. 


Filesystem corruption, while serious, is not all that common. Most of the 
time a check of the filesystems finds everything all right. The reason we put 
so much emphasis on filesystem checking is that if errors are allowed to go 
undetected, the ultimate loss can be substantial. 


4.5.3 The fsck Command 


The fsck command is used to check filesystems. When the operating system 
is brought up, all filesystems are checked for consistency. This precautionary 
measure helps to ensure a reliable environment for file storage on disk. The 
operating system first runs the fstat command to check the state of each 
filesystem. If fstat marks a filesystem as “dirty,” the system then runs fsck 
to check the filesystem. If fsck discovers an inconsistency, corrective action 
must be taken. 


fsck runs in two modes. Typically, the system runs fsck noninteractively 
during a normal boot. When running in this mode, which is called preening, 
fsck makes changes to the filesystem only if the changes are known to always 
be correct. 


If fsck is checking the root filesystem during a normal boot and finds an 
unexpected inconsistency, it reboots the system. If this does not fix the 
problem, fsck creates a shell on the console. You should use this shell only to 
run fsck manually to correct the root filesystem. When you exit the shell, the 
system is rebooted. 


* The information in section 4.5.3 is taken from the article “Fsck — The UNIX File System 
Check Program,” by Marshall Kirk McKusick and T. J. Kowalski. Revised July 16, 1985. 
Copyright © 1986, Regents of the University of California. 
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If, during a normal boot, fsck is checking a filesystem other than root and 
finds an unexpected inconsistency, it exits with a nonzero status, leaving the 
system running in single-user mode. 


Typically, you then run fsck manually. When fsck runs in this mode 
(interactive mode), it lists each problem and provides a suggested corrective 
action. You must decide whether fsck should make the suggested correction. 


Fix Corrupted Filesystems 


A filesystem can become corrupted in several ways, most commonly from 
improper shutdown procedures or hardware failures. : 


Filesystems can become corrupted during an unclean halt. This happens if 
proper shutdown procedures are not observed or if a mounted filesystem is 
taken off-line. The most common operator procedural failure is forgetting to 
sync the system before halting the CPU. 


Filesystems can become further corrupted if proper start-up procedures are 
not observed (for example, not checking a filesystem for inconsistencies and 
not repairing inconsistencies). Allowing a corrupted filesystem to be used 
(and, thus, to be modified further) can be disastrous. 


Any piece of hardware can fail at any time. Failures can be as subtle as a 
bad block on a disk pack, or as blatant as a nonfunctional disk controller. 


Detect and Correct Corruption 


Normally, fsck is run noninteractively. In this mode, it fixes only those 
corruptions expected to occur from an unclean halt. These actions are a 
proper subset of the actions that fsck takes when it is running interactively. 


This section assumes that fsck is running interactively and that all possible 
errors can be encountered. When fsck discovers an inconsistency while 
running in this mode, it reports the inconsistency and allows you to choose a 
corrective action. 


A quiescent (that is, unmounted and not being written to) filesystem can be 
checked for structural integrity by performing consistency checks on the 
redundant data intrinsic to a filesystem. The redundant data is either read 
from the filesystem or computed from other known values. Because fsck is a 
multipass program, the filesystem must be in a quiescent state when fsck is 
run. 
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The following subsections discuss methods to discover inconsistencies in the 
cylinder group blocks, the inodes, the indirect blocks, and the data blocks 
containing directory entries. 


Check the Superblock. The summary information associated with the 
superblock is the most commonly corrupted item in a filesystem. The 
summary information is prone to corruption because it is modified with every 
change to the filesystem blocks or inodes. This information is usually 
corrupted after an unclean halt. 


fsck checks the superblock for inconsistencies involving filesystem size, 
number of inodes, free-block count, and free-inode count. The filesystem size 
must be larger than the number of blocks used by the superblock and the 
number of blocks used by the list of inodes. The filesystem size and layout 
information are the most critical pieces of information for fsck. While there 
is no way to actually check these sizes, as they are statically determined by 
newfs, fsck can check that these sizes are within reasonable bounds. All 
other filesystem checks require that these sizes be correct. If fsck detects 
corruption in the static parameters of the default superblock, it asks the 
operator to specify the location of an alternate superblock. 


Check Free Blocks. fsck checks that blocks marked as free in the cylinder 
group block maps are not claimed by any files. When all of the blocks have 
been accounted for initially, fsck checks that the number of free blocks plus 
the number of blocks claimed by the inodes equals the total number of blocks 
in the filesystem. 


If anything is wrong with the block allocation maps, fsck rebuilds them 
based on the list of allocated blocks it has computed. 


The summary information associated with the superblock contains a count of 
the total number of free blocks within the filesystem. fsck compares this 
count to the number of free blocks it found within the filesystem. If the two 
counts do not agree, fsck replaces the incorrect count in the summary 
information with the actual free-block count. 


The summary information counts the total number of free inodes within the 
filesystem. fsck compares this count to the number of free inodes it found 
within the filesystem. If the two counts do not agree, fsck replaces the 
incorrect count in the summary information with the actual free-inode count. 


Check the Inode State. An individual inode is not as likely to be corrupted 
as the allocation information. However, because of the great number of 
active inodes, a few inodes are usually corrupted. 
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fsck checks the list of inodes in the filesystem sequentially, starting with 
inode 2 and progressing through the last inode in the filesystem. (Inode 0 
marks unused inodes; inode 1 is saved for future generations.) It checks the 
state of each inode for inconsistencies involving format and type, link count, 
duplicate blocks, bad blocks, and inode size. 


Each inode contains a mode word that describes the type and state of the 
inode. Inodes must be one of six types: regular inode, directory inode, 
symbolic link inode, special block inode, special character inode, or fifo 
(named pipe). Inodes can be in one of three allocation states: unallocated, 
allocated, and neither unallocated nor allocated. This last state suggests an 
incorrectly formatted inode. An inode can get in this state if bad data is 
written into the inode list. The only possible corrective action for fsck is to 
clear the inode. 


Inode Links. Each inode counts the total number of directory entries linked 
to the inode. fsck verifies the link count of each inode by starting at the root 
of the filesystem and descending through the directory structure. During the 
descent, fsck calculates the actual link count for each inode. 


If the stored link count is nonzero and the actual link count is zero, no 
directory entry appears for the inode. If this happens, fsck places the 
disconnected file in the lost+found directory. If the stored and actual link 
counts are nonzero and unequal, a directory entry may have been added or 
removed without updating the inode. If this happens, fsck replaces the 
incorrect stored link count with the actual link count. 


Each inode contains a list, or pointers to lists (indirect blocks), of all blocks 
claimed by the inode. Because indirect blocks are owned by an inode, an 
inconsistency in an indirect block directly affects the inode that owns it. 


fsck compares each block number claimed by an inode against a list of 
already allocated blocks. If another inode already claims a block number, 
that block number is added to a list of duplicate blocks. Otherwise, the list of 
allocated blocks is updated to include the block number. 


If there are any duplicate blocks, fsck performs a partial second pass over 
the inode list to find the inode of the duplicated block. The second pass is 
necessary because without examining the files associated with these inodes 
for correct content, not enough information is available to determine which 
inode is corrupted and should be cleared. If this condition does arise (an 
unclean shutdown or hardware failure can cause it), the inode with the 
earliest modify time is usually incorrect and should be cleared. If this 
happens, fsck prompts the operator to clear both inodes. The operator must 
decide which inode to keep and which inode to clear. 
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fsck checks the range of each block number claimed by an inode. If the block 
number is either lower than the first data block in the filesystem or greater 
than the last data block, the block number is a bad block number. Bad 
blocks in an inode are usually caused by an indirect block that was not 
written to the filesystem, a condition that can be caused by an unclean 
shutdown or a hardware failure. If an inode contains bad block numbers, 
fsck prompts the operator to clear the inode. 


Inode Data Size. Each inode contains a count of the number of data blocks 
that it contains. The number of actual data blocks is the sum of the allocated 
data blocks and the indirect blocks. fsck computes the actual number of data 
blocks and compares that block count against the actual number of blocks the 
inode claims. If an inode contains an incorrect count, fsck prompts the 
operator to fix it. 


Each inode contains a 32-bit size field. The size is the number of data bytes 
in the file associated with the inode. fsck makes a rough check of the 
consistency of the byte size field. To do this, it computes from the size field 
the maximum number of blocks that should be associated with the inode and 
then compares that expected block count against the actual number of blocks 
the inode claims. 


Check the Data Associated with an Inode. An inode can directly or 
indirectly reference three kinds of data blocks. All referenced blocks must be 
the same kind. The three types of data blocks are plain data blocks, symbolic 
link data blocks, and directory data blocks. Plain data blocks contain the 
information stored in a file; symbolic link data blocks contain the pathname 
stored in a link. Directory data blocks contain directory entries. fsck can 
check the validity of directory data blocks only. 


fsck checks each directory data block for several types of inconsistencies 
including directory inode numbers pointing to unallocated inodes, directory 
inode numbers that are greater than the number of inodes in the filesystem, 
incorrect directory inode numbers for “.” and “..”, and directories that are not 
attached to the filesystem. If the inode number in a directory data block 
references an unallocated inode, fsck will remove that directory entry. 

These conditions can arise from an unclean shutdown or hardware failure, or 
from bad data being written into a directory data block. 


» 


The directory inode number entry for “.” must be the first entry in the 
directory data block. The inode number for “.” must reference itself (that is, 
it must equal the inode number for the directory data block). The directory 
inode number entry for “..” must be the second entry in the directory data 
block. Its value must equal the inode number for the parent of the directory 
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entry (or the inode number of the directory data block if the directory is the 
root directory). If the directory inode numbers are incorrect, fsck will 
replace them with the correct values. If there are multiple hard links to a 
directory, the first link encountered is considered the real parent to which “..” 
should point; fsck recommends deletion for the subsequently discovered 
names. 


Filesystem Connectivity. fsck checks the general connectivity of the 


filesystem. If directories are not linked into the filesystem, fsck links the 
directory back into the filesystem in the lost+found directory. 


Operations Guide: sysadm 4-25 
1003-48607-00 


5. LP Print Service 
Administration 


UONEJ}SIUILUPY 
BOIMIBS Jd d1'S 


5.1 


5.2 


5.3 


r 


Chapter 5 
LP Print Service Administration 


WREHOATCCEION siiesccisesescecsecenssnseeeseseiassoacssivsacansveness os sesetescemeseet aeRO 5-1 
How the LP Print Service Works . wee 5-1 
Summary of User Commands ................ 5-2 
Summary of Administrative Commands .............ssssesesseseseeesereeeseseees 5-2 
Starting and Stopping the LP Print Service ...0.......c. esses 5-4 
Stopping the Print Service Manually ites 
Starting the Print Service Manually .........ccssscscsscssesseeseseseeessensessens 
Printer Management ..............cccccessececsseeessncesoesaeesssececonseeseeseneenensees 
Defining the Configuration of a Printer ..........cccsssssesseeesseereeeseeseseteneens 5-6 
Pranter: Name) ssssecssstecsersecevescecsssseecesscueseseuavassiesssensan seneasavenscipseasseseas' 5-7 
Connection Method... wae 5-7 
Interface Program .............. ee 5-9 
Printer Type ..........cceees .. 5-10 
Content Types .........scecseeeee 5-11 
Printer Port Characteristics..... .. 5-13 
Character Sets or Print Wheels ........:.csssssssssssseesssesseesseneaeeeeseeees 5-14 
POrTS ANG WEO,....cc..scssesssccsesasassnsaseansivosesosssecconcsevenrsontsacasouesesTsaeumeees 5-18 
Printer Faults ..0.......esccssesseeseseeees . 5-19 
Users Allowed Access to the Printer .. 5-21 
Barner Necessary .......:cssscsssscsssesesecessecesceessesssesseeseneeesetenseeeoneessaees 5-22 
DESCRIP ION sic. csccsecccesscrncegsacsessencssssnnnedsanatan sousanetsesNebsucteasveneeenmessenre 5-22 
Default Print Specifications .. 5-23 
Putting It All Together ................ 5-24 
Printer Classes ........cccsecesssseesseenseees .. 5-24 
Setting the Default Destination 5-25 
Removing a Printer or Class ........ .. 5-26 
Mounting a Form or Print Wheel ...........:.:cesssssesseresssessesneeeseneeeessees 5-26 
Accepting Print Requests ................ 
Enabling and Disabling a Printer 
Allowing Users to Enable and Disable Printers .............. 
Displaying Printer Status and Configuration Information .... . 5-29 
"THOUDIES HOG CIN Desi cesccescccscscdsecssisacccsssnserssasaascssstsacsasonseacesscashesvasswowss 5-31 
No Output — Nothing Prints .0...........ccsecssesecseseeseeesscecsceeeceeeseeesseeeeseens 5-31 


Operations Guide: sysadm 
1003-48607-00 


LP Print Service Administration 


[legible Outpitircesccssccsevseesessvosssescxesssoveasssesscavexesiveceseassesyeceassdeveseseisosy 5-32 
Legible Printing, but Wrong Spacing... 2++2 5-33 
Wrong Character Set or Font............... 1 B84 


Dial-Out Failures .... 


Tle Printers) vescccvevesesexesecevsessagevseeycevessseussesecsnsevoscesssceunsssxeensvacessesacsaee 5-35 

5.5 Managing the Printing Loa ...................ceeeeeeseseeceeeeceteeseneeneeeeees 5-37 
Moving Requests to Another Printer ...... 5-37 
Rejecting Requests for a Printer or Class .. 1 0-87 
Accepting Requests for a Printer or Class ..........cessseseeeseseeseceseeseers 5-38 
Bixam ples sessesdicesscexus sere saeuesvenvcevcasecavaenesexnecvessuceessueasvwinsanvdeamsinsseeeees 5-38 

5.6 Managing Printer Queue ..............::cccsseccesesreeeesereees we 5-40 
Printer Queue Setup ..............006. wa 5-40 
Setting User Priority Limits ..... w+ 5-40 
Setting a Default Priority Level 5-41 
Examining Priority Limits ........ we D-41 
Moving a Request in the Queue .............. we BAL 
Changing the Priority for a Request ...... wee B42 
Putting a Request on Hold .......... cc eeeeeeeeeees wees B42 
Moving a Request to the Head of the Queue ..........cscssscesseereestees 5-43 

DE WNORWMIS SOtU De cvscccosccevscacedvsssvensvevavesuvavecessnsotsosevsnseeseasncincssdonssatsvessess 5-44 
Defining a Form ............... 5-44 
Viewing a Form Definition ... 5-47 
Removing a Form Definition ... 5-47 
Restricting Access to a Form... wie BAT 
Notification to Mount @ Form .0......cccccccscceescessceeeseceeeaeeeeesseeeseeesanseees 5-48 


Operations Guide: sysadm 
1003-48607-00 


Chapter 5 
LP Print Service Administration 


5.1 Introduction 


This chapter tells how to configure and administer the LP print service. 
Chapter P65 in the first half of this guide provides the procedures you can use 
to manage the print service. 


This chapter includes the following topics: 
¢ Administering the LP print service 
¢ Stopping and starting the LP print service 
¢ Setting up printer configurations 
¢ Managing the printing load 
¢ Setting job priority limits for users 


¢ Managing pre-printed forms 


This chapter also describes LP print service files and directories. 


5.1.1 How the LP Print Service Works 


The LP print service allows you to send a file to be printed while you continue 
with other work. The LP print service system is software that performs 
these tasks: 


¢ Receives files sent to the print service. 

¢ Filters the files (if needed) so they can print properly. 
¢ Schedules the work of one or more printers. 

¢ Starts programs that interface with printers. 

¢ Keeps track of the status of jobs. 

e Alerts you to printer problems. 
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¢ Keeps track of forms currently mounted and alerts you to mount needed 
forms. 


e Issues error messages when problems arise. 


5.1.2 Summary of User Commands 


The LP print service includes three commands that any user can issue: 


cancel(1) Cancels a print request. 
Ip(1) Sends a file or files to a printer. 
Ipstat(1) Reports the status of the LP system. 


Users can also be given the ability to enable or disable a printer. The idea is 
that if a user finds a printer is malfunctioning in some way, it should not be 
necessary to call the administrator to turn the printer off. On the other 
hand, it may not be reasonable in your printing environment to allow regular 
users to disable a printer. You can control whether other users have access 
to the commands to enable or disable a printer. 


disable(1) Deactivates the named printers. 
enable(1) Activates the named printers. 


5.1.8 Summary of Administrative Commands 


The LP print service includes a separate set of commands for system admin- 
istration. These commands are found in the /usr/lib directory. If you ex- 
pect to use them frequently, you should include that directory in your PATH 
variable. To use the administrative commands, you must be logged in either 
as root or as Ip, which is a system login. 


The administrative commands are as follows: 


fusr/lib/accept(1M) 
Permits job requests to be queued for a specified destination. 


5-2 Operations Guide: sysadm 


1003-48607-00 


LP Print Service Administration 


/usr/lib/reject(1M) 
Prevents jobs from being queued for a specified destination (described 
on the same manual page as accept(1M)). 


/usr/lib/lpadmin(1M) 
Sets up or changes printer configurations. 


/usr/lib/Ipfilter (1M) 
Sets up or changes filter definitions. 


/usr/lib/Ipforms(1M) 
Sets up or changes definitions for preprinted forms (use 
/usr/lib/Ipadmin to mount a form). 


/usr/lib/Ipmove(1M) 
Moves output requests from one destination to another (described on 
the same manual page as lpsched(1M)). 


/usr/lib/lpsched (1M) 
Starts the LP print service. 


/usr/fib/lpshut (1M) 
Stops the LP print service (described on the same manual page as 
Ipsched(1M)). 


/usr/lib/lpusers (1M) 
Sets or changes the default priority level and the priority limits avail- 
able to users. 


The following sections describe these administrative commands in the order 
in which they are typically used when you set up the LP print service. 
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5.2 Starting and Stopping the LP Print Service 


Under normal operation, you should never have to start or stop the LP print 
service manually. It starts automatically each time the operating system is 
started and stops each time the operating system is stopped. However, if you 
need to stop the LP print service without stopping the operating system as 
well, follow the procedure described later in this section. 


Stopping the LP print service causes all printing to cease within seconds. 

The print requests that were being printed will be reprinted in their entirety 
after the LP print service is restarted. The printer configurations, forms, and 
filters that were in effect when the LP print service was stopped will be re- 
stored after the service is restarted. 


NOTE 


To start and stop the LP print service manually, you must be 
logged in as either the superuser root or the user Ip. 


5.2.1 Stopping the Print Service Manually 

To stop the LP print service manually, enter the following command: 
# /usr/ib/Ipshut 

The following message appears and all printing ceases within a few seconds. 
Print services stopped 


If you try to stop the LP print service when it is not running, you will see this 
message: 


Print services already stopped 
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5.2.2 Starting the Print Service Manually 

To restart the LP print service manually, enter the following command: 
# /usr/lib/lpsched 

The following message appears: 
Print services started 


It might take a minute or two for the printer configurations, forms, and fil- 
ters to be reestablished. Any saved print requests will then begin printing. 
If you try to restart the LP print service when it is already running, you will 
see this message: 


Print services already active 


NOTE 


The LP print service does not have to be stopped to change 
printer configurations or to add forms or filters. 
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5.3 Printer Management 


This section tells how to manage printers working with the LP print service. 
It describes the configuration information you can supply for a printer, tells 
how to notify the print service when a printer can accept print requests, 
shows how to enable or disable a printer, and tells how to examine the status 
of a printer. 


5.3.1 Defining the Configuration of a Printer 


When you add a printer to the print service, you must define its configura- 
tion. The following information can be included in a printer configuration: 


e Printer name 

¢ Connection method 

¢ Interface program 

¢ Printer type 

¢ Content types 

¢ Printer port characteristics 

¢ Character sets or print wheels 

¢ Forms allowed 

¢ Fault alerting 

¢ Fault recovery 

° Use restrictions 

e Banner necessary 

¢ Description 

¢ Default printing attributes 
You don’t need to supply all of this information. Only the printer name and 
the connection method are required. The more information you provide, how- 


ever, the better the printer will be managed for you and the better it will be 
represented to the people using the LP print service. 
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The descriptions in the following sections will help you understand what the 
printer configuration information means and how it is used. You can then de- 
cide how to configure your printers. While you can follow each of the sections 
in order and correctly configure a printer in several steps, you might want to 
wait until you’ve read all of the sections and then add the printer in a single 
step. 


Printer Name 


The printer name identifies the printer. You will use this name when you 
want to change the printer configuration or manage the printer. The users 
on your system will use the name to print a file on that printer. 


A printer name can be up to 14 characters long. It can include numbers, 
letters, and underscores. You can select any name you like, but it is helpful 
to choose descriptive names. For example, you could name a laser printer la- 
ser. If you have several laser printers, you could name them Jaser1, laser2, 
and so on. 


Don’t try to fit a lot of descriptive information into the name; there is a better 
place for this information (see “Description,” later in this section). The name 
doesn’t need to identify the type of printer—people who need to use a particu- 
lar type of printer can specify it by type, not name (see “Printer Type,” later 
in this chapter). 


To specify a printer name, use a command in the following form. (Don’t do it 
yet; you also need to specify the connection method as described in the next 
section.) 


# /usr/ib/fpadmin —pprinter-name 


The LP service does not provide default names; you must name every printer. 


Connection Method 


The LP print service allows you to connect printers in a variety of ways. You 
can connect printers directly to the computer or you can connect them 
through a network or a dialed modem, where they can be shared with other 
computers or workstations. After the printer is connected to your system, 
you should describe the connection method to the LP print service. The fol- 
lowing sections describe the commands required to do this. 


Adding a Directly Connected Printer. A direct connection is the default 
value. If you used this method to connect your printer to your computer, type 
a command in the following form to add the printer to the print service: 
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# /usr/fib/lpadmin -p printer-name —v pathname 


pathname is the name of the special file representing the printer port. 


Adding a Printer to be Used as a Login Terminal. Some directly con- 
nected printers can also be used as terminals for login sessions. If you want 
your printer to be used as a login terminal, type a command in the following 
form to add the printer to the LP print service: 


# /usr/ib/Apadmin -p printer-name -v pathname -1 


pathname is the name of the special file representing the printer port. The -1 
option indicates that the printer should be automatically disabled when the 
LP print service starts up. This allows users to log in on the printer. You 
will need to enable the printer to allow it to be used for printing. 


Adding a Printer Connected Through a Modem or Network. There 
are two ways to make nondirect connections: through a dial-up modem or 
over a network. The LP print service uses the Basic Networking Utilities to 
handle both methods of nondirect connection. If a dial-out modem is used, 
three prerequisites must be satisfied: the printer must be connected via a di- 
aled modem, a dial-out modem must be connected to the computer, and Basic 
Networking must know about this modem. 


Printers connected over any other type of network require that a “system 
name” be given for each printer. This is the name of an entry in the Systems 
file or a related file. Although the printer is not a system, the Systems file 
can still be used to record the access method (no login information will be 
given, of course). 


Because the cu program accesses a printer in the same way the LP print ser- 
vice does, you should set up the files as though preparing access to the print- 
er for cu. The cu command is not used to access printers, but can serve as a 
test when setting up files. If cu can access a printer, the LP print service will 
be able to access it, too. (See Chapter 7, “Basic Networking,” for details 
about setting up network connections.) 


To add a printer that is connected over a modem or network, type a command 
in this form: 
# /usrfib/padmin -p printer-name -U dial-info 


dial-info is either the telephone number to be dialed to reach the printer’s 
modem or the system name entered for the printer in the Basic Networking 
Systems file. 
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You must include either the —U or -v option on the lpadmin command line. 
If the printer is to be used as a login terminal, you must also include the -1 
option. 


A note on dial-out or network printers: if the printer or port is busy, the LP 
print service will automatically retry later. If the printer is busy, the retry 
rate is 10 minutes; if the port is busy, the rate is 20 minutes. These rates are 
not adjustable. However, you can force an immediate retry by issuing an en- 
able command for the printer. If the port or printer is likely to be busy for 
an extended period, you should issue a disable command. 


The lpstat -p command reports the reason for a failed dial attempt. Also, if 
you are alerted to a dialing fault, the alert message will give the reason for 
the fault. These messages are identical to the error messages produced by 
the Basic Networking Utilities for similar problems. 


Interface Program 


The LP print service uses an interface program to manage the printer each 
time a file is printed. An interface program has four main tasks: 


¢ To initialize the printer port (the connection between the computer and 
the printer) 


¢ To initialize the printer (restore it to a normal state in case a previously 
printed file has left it in an unusual state) and set the character pitch, 
line pitch, page size, and character set requested by the user 


¢ To print a banner page 


¢ Torun a filter to print the file 


If you do not choose an interface program, the standard program provided 
with the LP print service will be used. This should be sufficient for most of 
your printing needs. You can modify the default program or write your own 
interface program and then specify it when you add a new printer. (See 
“Customizing the Print Service,” later in this chapter, for more information.) 


If you will be using the standard interface program, you don’t need to specify 
it when adding a printer. If you will be using a different interface program, 
you can refer to it either by specifying its full pathname or by referring to an- 
other printer using that program. 
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NOTE 


You can also specify an interface program by naming a model 
interface program. The models provided with the old LP Spool- 
ing Utilities have been carried over, but they do not support all 
the new features. These models will be phased out in a future 
release. 


To identify a customized interface program by name, specify the printer 
name and the pathname of the interface program as follows: 


# /usrfib/lpadmin -p printer-name -i pathname 


To identify a customized interface program by reference to another printer, 
type a command in this form: 


# /usr/fib/lpadmin -p printer-name] -e printer-name2 


Replace printer-namel1 with the name of the printer you are adding; replace 
printer-name2 with the name of the printer that is currently using the cus- 
tomized interface program. 


To identify an interface program by reference to a model interface program, 
type a command in this form: 


# /usr/lib/padmin -p printer-name -—m model-name 


Printer Type 


The LP print service uses the printer type to extract information about the 
printer from the Terminfo database. The LP print service will then warn you 
if some of the configuration information you provide isn’t appropriate for the 
printer. The information in the Terminfo database also describes the control 
data used to initialize the printer before printing a file. While you are not re- 
quired to specify a printer type, you are urged to specify one so that better 
print services will be provided. 
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The printer type is the generic name for the printer. Typically, it is derived 
from the manufacturer’s name. 


Specify the printer type as follows: 
# /usr/ib/padmin -p printer-name -T printer-type 


If you do not define the printer type, the default value unknown will be used. 
This will produce empty results when the LP print service looks up informa- 

tion about the printer. The print service will not be able to verify certain re- 

quests or to initialize the printer. 


Content Types 


The content type information tells the LP print service the types of files that 
can be printed. Most printers can print only one type of file. For them, the 
content type is likely to be identical to the printer type. Some printers, 
though, can accept several different types of files and print their contents 
properly. When adding this kind of printer, you should list the names of the 
content types it accepts. 


When a user submits a print request, the print service searches for a printer 
capable of handling the job. The print service can identify an appropriate 
printer through either the content type name or the printer type name. 
Users can specify either a content type or printer type name (or no name) 
when issuing a print request. 


Select content type names that are meaningful to you and to the people using 
the printer. A content type name can be up to 14 characters long and can in- 
clude only letters, digits, and underscores. (The names simple, terminfo, 
and any have specific meanings to the LP print service; be sure to use them 
consistently.) 


If several printers can print the same content type, specify the same content 
type names when you add those printers. Users can then specify the same 
name to identify the type of file they want printed regardless of the printing 
destination. 


For example, several manufacturers produce printers that accept ANSI X3.64 
defined escape sequences. However, the printers might not support all of the 
ANSI capabilities or might support different sets of capabilities. To differen- 

tiate among these printers, you could specify different content type names for 
them. 
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You do not have to list the content types for a printer. If you don’t, the print- 
er type will be used as the name of the content type the printer can handle. 
If you have not specified a printer type, the LP print service will assume that 
the printer can print only files of content type simple. This may be suffi- 
cient if you will require people to pick the proper printer and to make sure 
the files are properly prepared for the printer. 


One type of file often encountered is called simple. This file is assumed to 
contain printable ASCII characters and the following control characters: 


BackSpace Moves the carriage back one space, except at the be- 
ginning of a line. 
Tab Moves the carriage to the next tab stop; by default, 


tabs are spaced every 8 columns on most printers. 


LineFeed Moves the carriage to the beginning of the next line 
(may require special port settings for some printers; 
see “Printer Port Characteristics”). 


FormFeed Moves the carriage to the beginning of the next page. 


CarriageReturn Moves the carriage to the beginning of the same line 
(may fail on some printers). 


If a printer can handle a simple type of file, you should include it in the con- 
tent type list when you add the printer. If you don’t want a printer to accept 
files of type simple, you must specify an alternate list of content types the 
printer can accept. (The printer type is a good name to use if no other type is 
appropriate.) 


The names terminfo and any should not be used as content types when 
adding a printer. The name texrminfo doesn’t refer to a particular type of 
file, but instead refers to all of the types represented in the Terminfo data- 
base. It is not likely that any printer is capable of handling all the types list- 
ed in the database. However, this name is reserved for describing possible 
filter capabilities. The content type any is reserved for describing the types 
of files a filter can accept or produce. 


Specify the list of content types as follows: 
# /usr/ib/Apadmin -p printer-name -I content-type-list 


The content-type-list is a list of names separated by either commas or spaces. 
If you use spaces to separate the names, enclose the entire list (but not the 
-I) in quotes. If you do not define the types of files a printer can accept, the 
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LP print service will assume it can take type simple and a type with the 
same name as the printer type (if the printer type is defined). 


Printer Port Characteristics 


The interface program must set printer port characteristics for directly con- 
nected printers and for printers connected over some networks. These char- 
acteristics define the low-level communications with the printer and include 
the baud rate, use of XON/XOFF flow control, 7, 8, or other bits per byte, 
style of parity, and output post-processing. The standard interface program 
uses the stty command to initialize the printer port. It sets the baud rate 
and a few other default characteristics, as described below: 


Default Meaning 


9600 9600 baud rate 

cs8 8-bit bytes 

-estopb 1 stop bit per byte 
-parenb No parity generation 


ixon Enable XON/XOFF flow control 
-ixany Allow only XON to restart output 


opost Post-process data stream 

-oluc Don’t map lowercase to uppercase 

onlcr Map linefeed into carriage-return/linefeed 
-ocrnl Don’t map carriage-return into linefeed 
-nocr Output carriage-returns even at column 0 
nl0o No delay after linefeeds 

cx0 No delay after carriage-returns 

tab0 No delay after tabs 

bs0 No delay after backspaces 

vt0 No delay after vertical tabs 

f££0 No delay after form-feeds 


The default characteristics might be sufficient for your printers. However, 
printers vary enough that you might need to set different characteristics. See 
the description of the stty(1) command in the Reference Manual to find the 
complete list of characteristics. 


Operations Guide: sysadm 5-13 
1003-48607-00 


LP Print Service Administration 


If you have a printer that requires printer port characteristics other than 
those handled by the stty program, you will have to customize the interface 
program. 


When you add a new printer, you can specify an additional list of port charac- 
teristics that should be applied when printing a file. Because your list will be 
applied after the default list, your list doesn’t need to include the default 
items you don’t want to change. Specify the additional list as follows: 


# /usr/ibfpadmin -p printer-name -o "stty=‘stty-option-list" 


If you include more than one item in the stty-option-list, both double quotes 
and single quotes are needed. If you do not include alternate printer port 
characteristics, the default list shown earlier will be used. 


As an example, suppose your printer is to be used for printing graphical data 
where linefeed characters should be output alone, without an added carriage- 
return. You would enter the following command: 


# /usrfib/fpadmin -p printer-name -o "stty=-onler" 
The single quotes are omitted because the list contains only one item. 


As another example, suppose your printer requires odd parity for data sent to 
it. You would enter the following command: 


a 


# /usr/lib/lpadmin -p printer-name -o "stty="parenb parodd cs7 


Character Sets or Print Wheels 


Many printers can print in different font styles. Some printers use print 
wheels to do this, others use font cartridges or preprogrammed, selectable 
character sets. When you add a printer, you can specify the print wheels, 
font cartridges, or character sets available with the printer. Only one of 
these is assumed to apply to each printer. 


To the LP print service, print wheels and changeable font cartridges are the 
same because they require you to intervene and mount a new print wheel or 
font cartridge. This section discusses only print wheels and character sets. 
However, the print wheel information also applies to font cartridges. 


When you list the print wheels or character sets available on a printer, you 
must assign names to them. Because different printers can have similar 
print wheels or character sets, you should use common names for all printers. 
This allows a user to submit a file for printing and to ask for a particular font 
style, without regard for which printer will be used or whether a print wheel 
or selectable character set is used. 
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If a printer has mountable print wheels, you need to list only their names. 
Use a command in this form: 


# /usr/ib/{padmin -p printer-name -S printwheel-list 


The printwheel-list is a list of names separated by commas or spaces. If you 
use spaces to separate the names, enclose the entire list (but not the -S) in 
quotes. 


If a printer has selectable character sets, you need to list their names and to 
map each character set into a name or number that identifies it in the Ter- 
minfo database. You can use the following command to determine the names 
of the character sets listed in the Terminfo database. printer-type is the 
name of the printer type in question. 


$ TERM=printer-type tput csnm 0 


The name of the character set obtained by default after the printer is initial- 
ized should appear. Repeat the command, using 1, 2, 3, and so on (in place of 
the 0), to see the names of the other character sets. In general, the Terminfo 
names should closely match the names used in the printer documentation. 
However, because not all manufacturers use the same names, the Terminfo 
names may differ from one printer type to the next. 


NOTE 


For the LP print service to be able to find the names in the Ter- 
minfo database, you must specify a printer type. For more in- 
formation, see “Printer Type,” earlier in this chapter. 


To specify a list of character set names and to map them into Terminfo 
names or numbers, enter the following command: 


# /usr/lib/lpadmin -p printer-name -S character-set-list 


The character-set-list is a list of names separated by commas or spaces. Each 
item in the list looks like one of the following: 


csN=character-set-name 
character-set-name 1 =character-set-name2 


The N is a number from 0 to 68 that identifies the number of the character 
set in the Terminfo database. The character-set-name1 identifies the charac- 
ter set by its Terminfo name. In either case, the value to the right of the 
equals sign (=) is the name you want to use as an alias for the character set. 
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NOTE 


You do not have to provide a list of aliases for the character sets 
if the Terminfo names are adequate. You can refer to a charac- 
ter set by number, by Terminfo name, or by your alias. 


For example, suppose your printer has two selectable character sets (set #1 
and #2) in addition to the standard character set (set #0). The printer type is 
5310. You would enter the following commands to determine the names of 
the selectable character sets. 


TERM=5310 tput csnm 1 

english 

TERM=5310 tput csnm 2 

finnish 
The words english and finnish are the names of the selectable character 
sets. You feel that the name finnish is adequate for referring to character 
set #2, but better names are needed for the standard set and set #1. You 
could enter the following command to define synonyms. 


# /usr/lib/lpadmin -p printer-name -S "csO0=american, english=british" 


If you do not list the print wheels or character sets that can be used with a 
printer, the LP print service will assume the following: 


¢ Aprinter that takes print wheels has only a single, fixed print wheel 
and people cannot ask for a special print wheel when using the printer. 


e Aprinter that has selectable character sets can take any csN name or 
Terminfo name known for the printer. 


Alerts to Mount Print Wheels or Font Cartridges. When a print request 
requires a specific print wheel or font cartridge, the request remains inthe ~ 
queue until you tell the print service that you have mounted the print wheel 
or font cartridge. 

The print service can notify you when a print request requires a particular 
print wheel or font cartridge. The —A option to the lpadmin command lets 
you specify how you want to be alerted: by a mail message, by a message 
written on your terminal, or by another command. You can also choose not to 
receive alerts. 
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In the following commands, the -W min option indicates the number of min- 
utes between alerts. If you want to receive only one alert, omit this option. 
The -Q integer option lets you specify the number of requests that must be 
waiting before you are alerted. If you do not specify an alert method, you will 
need to check for print requests requiring a specific print wheel or font car- 
tridge. 


° To receive a mail message (via the mail program), type a command in 
this form: 


# Ipadmin -S printwheel/cartridge -A mail —-Q integer -W min 


¢ To have a message written to your terminal (via the write command), 
type a command in this form: 


# Ipadmin -S printwheel/cartridge -A write -Q integer -—W min 


¢ To specify another command to be run when a print request requires a 
specific print wheel or font cartridge, specify a command in this form: 


# lpadmin -S printwheel /cartridge -A ‘command’ -Q integer -W min 


The shell environment in effect when you issue this command is saved 
and then restored when command executes. This includes the environ- 
ment variables, user and group IDs, and the current directory. 


If you want another person to be notified when a print wheel or font car- 
tridge needs to be mounted, follow the -A option with the person’s login 
name. 


-A “mail user’ 


-A ‘write user’ 


¢ Ifyou don’t want to receive an alert, type a command in this form: 
# /usr/lib/lpadmin -S printwheel/charset -A none 
If you type all as the name of the print wheel or character set, the notifica- 


tion method will apply to all print wheels and character sets for which you 
have defined an alert method. 


If you are receiving repeated alerts, you can type the following command to 
tell the print service to stop sending alerts. 


# /usr/lib/lpadmin -S printwheel/charset -A quiet 
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Forms Allowed 


If you are using preprinted forms, you can specify the forms that can print on 
a specific printer. You might want to do this if some forms are the wrong size 
for a printer or the print quality is not adequate for certain forms. (The 
forms must be set up in the print service; see “Forms,” later in this chapter, 
for more information.) 


If you don’t set up this option, the print service assumes that all forms are 
denied for the printer. You can still mount any form on the printer. How- 
ever, you will see a warning message when you notify the print service that 
you are mounting a form. 


You can use an allow list and a deny list to specify the forms each printer can 
handle. The allow list contains forms the printer can print; the deny list con- 
tains forms that cannot be used. If there are entries in the allow list, the 
print service ignores the deny list. If there are no entries in the allow list, the 
print service uses the deny list. If both lists are empty, all forms can be used 
on the printer. 


To add forms to the allow list, type a command as shown below. If the form 
name was already in the deny list, it will be removed from that list. To allow 
all forms, specify allow:all. 


# lpadmin -p printer -f allow:forms 


To add forms to the deny list, type a command as shown below. If the form 
name was already in the allow list, it will be removed from that list. To deny 
all forms, specify deny:all. 


# Ipadmin -p printer -f deny:forms 


If you specify multiple forms, use spaces or commas to separate the names. 
If you use spaces, enclose the list (including allow: or deny:) in quotes. 


You will receive a warning message if you mount a form that is denied for the 
printer or that doesn’t match the capabilities of the printer. Ifa user re- 
quests a denied form, the print service will refuse the request unless the form 
is already mounted. 
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Printer Faults 


The LP print service can detect printer faults ranging from a need to replace 
toner to a local power failure or printer failure. The print service recognizes 
two types of printer fault indicators: a drop in carrier (the signal indicating 
the printer is on line) and an XOFF that is not followed by an XON. How- 
ever, you can add filters that can recognize other printer fault indicators. 


Fault Alert Notification. The print service can notify you when it detects a 
fault. The -A option to the /usr/lib/lpadmin command lets you specify how 
you want to alerted: by a mail message, by a message on your screen, or by 
another command. You can also choose not to receive alerts. The —W option 
indicates the number of minutes between alerts. If you want to receive only 
one alert, omit this option. If you do not specify an alert method, you will re- 
ceive a single mail message when a printer fault occurs. 


¢ To receive a mail message (via the mail program), type a command in 
this form: 


# /usr/lib/lpadmin -p printer -A mail -W minutes 
¢ To have a message written to your terminal (via the write command), 
type a command in this form: 
# /usr/lib/lpadmin -p printer -A write —-W minutes 
* To specify another command to be run when a fault condition exists, 
type a command in this form: 
# /usr/ib/lpadmin -p printer -A ‘command’ -W minutes 


The shell environment in effect when you enter this command is saved 
and then restored when command executes. 


If you want another person to be notified when a printer fault occurs, 
follow the -A option with the appropriate login name. 


-A ‘mail user’ 
-A ‘write user’ 
¢ Ifyou don’t want to be alerted when a printer fault occurs, type a com- 
mand in this form: 
# /usr/ib/lpadmin -p printer -A none 


In this case, you must locate faults yourself. The LP print service will 
not use a printer that has a fault. 
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If you type all as the printer in any of these commands, the alerting condition 
applies to all printers. 


NOTE 


If you have not added a filter that provides better fault detec- 
tion, the LP print service cannot automatically determine when 
a fault has been cleared. It simply tries to print another file and 
assumes the fault is cleared when it can print the file. If you 
asked for only one alert per fault, you will not receive another 
alert even if the fault is fixed and the printer faults again before 
the system can print a file. To prevent this situation, require re- 
peated alerts or select the -F wait option for fault recovery (see 
“Fault Recovery,” following). 


If you are receiving repeated alerts for a printer fault, you can issue the fol- 
lowing command to tell the LP print service to stop sending alerts for that 
fault. 


# /usr/lib/{padmin -p printer-name -A quiet 


Fault Recovery. The LP print service recovers from a printer fault in one 
of these ways: 


¢ It continues printing at the top of the page where printing stopped. 


¢ It reprints the entire print request that was active when the fault oc- 
curred. 


¢ It waits for you to reenable the printer. 


The print service can resume printing at the top of the page where printing 
stopped only if you are using a filter that can wait for a printer fault to be 
cleared. Such a filter probably needs detailed knowledge of the control se- 
quences used by the printer so that it can keep track of page boundaries and 
know where printing stopped. The default filter used by the LP print service 
cannot do this. The print service will notify you if recovery cannot proceed as 
you want. 
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To tell the print service to resume printing at the top of the page, type a com- 
mand in this form: 


# lpadmin -p printer -F continue 


To tell the print service to reprint the entire request, type a command in this 
form: 


# lpadmin -p printer -F beginning 


To tell the print service to wait until you enable the printer, type a command 
in this form: 


# lpadmin -p printer-name -F wait 


If you don’t set up this option, the print service will resume printing on the 
page where printing stopped. If that is not possible, it will reprint the entire 
request. 


If you specify continue as the recovery method but the interface program 
cannot detect when the printer fault has been cleared, printing will be at- 
tempted every few minutes until it succeeds. To force the LP print service to 
retry immediately, enable the printer. 


Users Allowed Access to the Printer 


You can limit the use of a printer to specific users. If you don’t set up this op- 
tion, everybody can use the printer. 


You can use an allow list and a deny list to specify the users able to access 
the printer. The allow list contains names of users allowed to use the printer; 
the deny list contains users that cannot use the printer. If there are entries in 
the allow list, the print service ignores the deny list. If there are no entries in 
the allow list, the print service uses the deny list. If both lists are empty, 
everyone can use the printer. 


To add user names to the allow list, type a command as shown below. Ifa 
user name was already in the deny list, it will be removed from that list. 
To allow all users, specify allow:all. 


# Ipadmin -p printer -u allow:users 


To add user names to the deny list, type a command as shown below. Ifa 
user name was already in the allow list, it will be removed from that list. To 
deny all users, specify deny:all. In this case, only the user lp and the su- 
peruser (root) can use the printer. 


# Ipadmin -p printer -u deny:users 
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If you specify multiple user names, use commas or spaces to separate the 
names. If you use spaces, enclose the list (including allow: or deny:) in 
quotes. 

Banner Necessary 


A banner page precedes each print job. It shows who requested the print job, 
the request ID for the job, and when the output was printed. It also allows 
for an optional title that the requester can use to better identify a printout. 
The banner page also makes it easier to separate print jobs for different 
users. 


Sometimes a user needs to avoid printing a banner page. For example, a 
banner page is unnecessary when printing forms such as invoices or checks. 


Enter the following command to allow a user to skip the banner page: 

# /usrfib/lpadmin —p printer-name -o nobanner 
To reverse this choice, enter the following command. 

# /usr/lib/padmin -p printer-name -o banner 
If you do not allow users to skip the banner page, the LP print service will re- 
ject all attempts to avoid printing a banner page. This is the default action. 
Description 


One way to give users helpful information about a printer is to add a descrip- 
tion to the print service. The description can contain any message you like, 
such as the location of the printer or the contact for printer problems. 


This message appears when users issue the lpstat —D -p printer-name com- 
mand. 


To add a description to a printer configuration, enter a command in the fol- 
lowing form. 


# /usr/ib/fpadmin -p printer-name -D ’text’ 


The text is the message. If the message contains blanks or other characters 
that the shell might interpret, enclose the message in quotes. The LP print 
service does not provide a default description. 
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Default Print Specifications 


A print request can include the page size, character pitch, and line pitch to be 
used for that job. If a print request doesn’t include these specifications, the 
default values are used. 


For each printer, you can specify the default page size and print spacing. For 
example, one printer might produce wide (132-column) output, another might 
produce 80-column by 66-line output, and another might produce letter quali- 
ty (12 characters per inch, 8 lines per inch) output. If you set up these val- 
ues, users can request an output style and the print service will send the re- 
quests to the appropriate printer. 


You can specify four default settings: page width, page length, character 
pitch, and line pitch. You can specify the page width as either columns, 
inches, or centimeters; the page length can be either lines, inches, or centime- 
ters. The character pitch and line pitch can be specified as the number of 
characters and lines either per inch or per centimeter. The character pitch 
can also be specified as pica for 10 characters per inch (cpi), elite for 12 cpi, 
or compressed for the maximum cpi the printer can provide (up to a limit of 
30 epi). 


The following commands allow you to set default printing attributes: 


# lpadmin -p printer -o width=number 
# Ipadmin -p printer -o length=number 
# Ipadmin -p printer -o cpi=number 


# lpadmin -p printer -o lpi=number 


To indicate inches, add the letter i to the number. To indicate centimeters, 
add the letter c. It is unnecessary to add i for the character pitch (cpi) or line 
pitch (lpi). You can also specify pica, elite, or compressed as the character 
pitch. 


If you don’t provide defaults, the print service uses the print specifications 
available when the printer was initialized. The following command reports 
the default page size and print spacing. 


$ Ipstat —p printer -1 


These defaults are calculated from the Terminfo database entry for the print- 
er. (For this to work, you must specify a printer type as described earlier in 
this chapter.) 
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Putting It All Together 


It is possible to add a new printer by completing a number of separate steps, 
as shown in the previous discussions. You might find it easier, however, to 
combine all of the necessary arguments in one or two commands. Following 
are some examples. 


Example 1. Add a new printer called /p1 on port /dev/ttyGA/GAAH. It 
should use the standard interface program, have a default page size of 90 col- 
umns by 71 lines, and linefeeds should not be mapped into carriage re- 
turn/linefeed pairs. (This example is split into two lines for readability.) 


# /usr/lib/lpadmin -p Ip1 -v /dev/ttyGA/GAAH -T 455 -o "width=90 length=71 
stty=-onlcr" 


Example 2. Add a new printer called laser on port /dev/ttyGA/GAAI. It 
should use a customized interface program, be able to handle three file types 
(410, 1300, and impress), and be available for use only by the users doceng 
and docpub. (This example is split into two lines for readability.) 


# /usr/lib/ipadmin -p laser -v /dev/ttyGA/GAAI -i /usr/doceng/laser_intface 
-I "i10,i300,impress"—u "allow:doceng,docpub" 


Example 3. When adding the Jp! printer in the first example, we forgot to 
set the alerting. We’ll have the LP print service alert us every 10 minutes af- 
ter a fault until we fix the problem. 


# /usr/ib/lpadmin -p Ip1-A write -W 10 


5.3.2 Printer Classes 


The LP print service allows you to treat a collection of printers as a single 
class. When issuing a print command, users can specify the class of printers 
that is to print the request. The LP print service then sends the print re- 
quest to the first available printer in the class. This allows faster turn- 
around, as printers are kept as busy as possible. 


If you allow users to submit print requests for a particular type of file, it is 
unnecessary to set up printer classes. The lp -T type command allows a user 
to specify the type of file to be printed. The print job will be sent to the first 
available printer that can print that type of file. The LP print service avoids 
using a filter. If possible, it chooses a printer that can print the file directly, 
rather than a printer that would require the file to go through a filter. 
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@ Classes do have uses, however. For example, a class can include a set of 
printers that should be used in a particular order. If you have a high-speed 
printer and a low-speed printer, you might want the high-speed printer to 
handle as many print requests as possible, reserving the low-speed printer 
for times when the other printer is busy. The LP print service always checks 
for an available printer in the order the printers were added to a class. If you 
added the high-speed printer to the class before you added the low-speed 
printer, the LP print service will route print requests to the high-speed print- 
er first. 


If you want to add a printer to a class, use a command in this form: 
# /usr/ib/lpadmin -p printer-name -¢ class-name 
If the class (class-name) doesn’t exist, it will be created. 


You cannot use the same name for a class and a printer. 


5.3.3 Setting the Default Destination 


The LP print service allows you to specify a default destination, which can be 
either a single printer or a class of printers. If a user does not specify a desti- 

© nation on the command line and has not set the LPDEST environment vari- 
able, the print request goes to the default destination. 


To set up a default destination, type a command in the following form. The 
printer or class you specify must already exist. 


# /usr/lib/Apadmin -d printer-or-class-name 


If you want to remove the default destination, omit the printer-or-class-name, 
as in the following example. 


# /usr/libApadmin -d 


If you don’t set a default destination, users must either specify a destination 
on the command line or set the LPDEST environment variable to the name of 
a printer or class. 
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5.3.4 Removing a Printer or Class 


You can remove a printer or class from the LP print service if it has no pend- 
ing print requests. If there are pending requests, you must first either move 
them to another printer or class (by using the lpmove command), or delete 
them (by using the cancel command). 


Removing the last remaining printer from a class automatically removes the 
class as well. However, the removal of a class does not cause the removal of 
printers that were members of the class. If the printer or class that you re- 
move is also the system default destination, the system will no longer have a 
default destination. 


To remove a printer or class, enter a command in this form: 
# /usr/ib/lpadmin -x printer-or-class-name 


If you want to remove a printer from a class without deleting the printer, en- 
ter a command in this form: 


# /usr/lib/lpadmin -p printer-name -r class-name 


5.3.5 Mounting a Form or Print Wheel 


If a print request requires a specific form or print wheel, you must mount the 
form or print wheel before the job can print. If alerting has been set on the 
form or print wheel, you will be alerted when the number of print requests 
waiting for the form or print wheel reaches the number you specified. 


Mounting a form or printwheel involves loading it onto the printer and then 
telling the LP print service that it is mounted. Because the LP print service 
will continue to use the printer to print other files, you will probably have to 
disable the printer first. The proper procedure is as follows: 


1. Use the disable command to disable the printer. 


2. Mount the new form or printwheel as described in the following para- 
graphs. 
3. Use the enable command to reenable the printer. 


The disable and enable commands are described in “Enabling and Disabling 
a Printer,” later in this chapter. 
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After mounting a print wheel, enter a command in the following form to tell 
the LP print service where the print wheel is mounted. 


# /usr/fib/padmin -p printer-name —M -S printwheel-name 


After loading a form, enter a command in the following form to tell the LP 
print service where the form is loaded. 


# /usr/fib/lpadmin —p printer-name -M -f form-name -a -o filebreak 


When you mount a form, you might want to make sure it is lined up properly. 
If an alignment pattern has been registered with the form, you will be asked 
to press(Retum) before a copy of the alignment pattern prints. After the pat- 
tern prints, you can adjust the printer and press (Return) again. If no align- 
ment pattern has been registered, you won’t be asked to press(Retum). You 
can omit the -a and -o filebreak options if you won’t be using the alignment 
pattern. 


The -o filebreak option tells the LP print service to add a formfeed after 
each copy of the alignment pattern. The actual control sequence used for the 
formfeed depends on the printer involved and is obtained from the Terminfo 
database. If the alignment pattern already includes a formfeed, omit the -o 
filebreak option. 


When you are ready to unmount a form, use a command in this form: 
# /usr/ib/Mpadmin —p printer_name -M -f none 
If you are unmounting a print wheel, enter a command in this form: 


# /usr/lib/lpadmin -p printer_name -M -S none 


5.3.6 Accepting Print Requests 


After you’ve defined a printer configuration, you must tell the LP print ser- 
vice to accept print requests for the new printer. You will also need to enable 
the printer. 


The accept command tells the LP print service to accept print requests for 
the new printer. This command is described more fully in a later section, 
“Managing the Printing Load.” For now, simply type a command in the fol- 
lowing form: 


# /usr/lib/accept printer-or-class-name 


This command is also used to tell the LP print service to start accepting print 
requests for a class. 
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5.3.7 Enabling and Disabling a Printer 


After telling the LP print service to accept print requests for a printer, you 
must enable the printer to allow the requests to print. (You do not need to 
enable classes.) Use the enable command to enable a printer. 


# enable printer-name 


You can specify several printers on the command line. Use spaces to sepa- 
rate the printer names. 


Occasionally, you will need to disable a printer. For example, this should be 
done before you change a form or print wheel or whenever you want to inter- 
rupt a print request. Disabling a printer stops further print requests from 
being printed. However, it does not stop the LP print service from accepting 
new print requests for the printer. 


Disabling a printer also stops the request currently being printed. The re- 
quest is then returned to the queue so it can be printed later. However, you 
can have the LP print service cancel the request or wait until the current re- 
quest finishes and then disable the printer. 


To disable the printer, stop the request being printed, and return it to the 
queue to be printed later, type a command in this form. 


# disable -r "reason" printer-name 


To disable the printer after the current request finishes printing, type a com- 
mand in this form: 


# disable —W -r "reason" printer-name 


To disable the printer and cancel the request that is currently printing, type 
a command in this form: 


# disable -c -r "reason" printer-name 


If you include the —r option, the reason you specify will appear when users 
ask the status of the printer. If you don’t want to specify a reason, you can 
omit this option. 


You can specify multiple printer names on the disable command line. 
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Allowing Users to Enable and Disable Printers 

You can permit all users to issue the enable and disable commands. Doing 
this allows anyone spotting a problem with a printer to disable it. However, 
giving users access to these commands can interfere with the proper opera- 
tion of the print services. 


If you want to give users access to the enable and disable commands, use a 
standard operating system feature called the “setuid bit.” After assigning 
ownership of these commands to the user Ip (this should have been done 
automatically when you installed the software) and setting the setuid bit, all 
users will be able to use the enable and disable commands. Clearing the 
setuid bit removes this privilege. 


To allow everybody to run enable and disable, enter the following two com- 
mands: 


# chown Ip /usr/bin/enable /usr/bin/disable 


# chmod uts /usr/bin/enable /usr/bin/disable 


The first command makes the user Ip the owner of the commands. This step 
might be redundant, but it is safer to run the command than to skip it. The 
second command turns on the setuid bit. 


To prevent other users from running enable and disable, enter the following 
command: 


# chmod u-s /usr/bin/enable /usr/bin/disable 


5.3.8 Displaying Printer Status and Configuration Information 


You can use the Ipstat command to view the current status of a printer and 
to check its configuration. If you issue the short form of the command, as 
shown below, the system lists status information. 


# lIpstat —p printer-name 


This information tells you if the printer exists and if it is busy, idle, or dis- 
abled. You should see a message similar to one of the following lines. 


printer printer-name now printing request-id. enabled since date. 
printer printer-name is idle. enabled since date. 


printer printer-name disabled since date. 
reason 
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printer printer-name waiting for auto-retry. 
reason 


The waiting for auto-retry message means the LP print service failed 
in trying to use the printer (because of the reason shown) and will try again 
later. 


The long form of the command produces a complete configuration listing as 
well as status information. 


# lpstat -p printer-name -1 
The configuration listing contains the following information. 


Form mounted: form-name 
Content types: content-type-list 
Printer type: printer-type 
Description: comment 
Connection: connection-info 
Interface: path-name 
On fault: alert-method 
After fault: fault-recovery 
Users allowed: 

user-list 


Forms allowed: 
form-list 
Banner required 
Character sets: 
character-set-list 
Default pitch: integer CPI, integer LPI 
Default page size: scaled-decimal-number wide, scaled-decimal-number long 
Default port settings: stty-option-list 
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5.4 Troubleshooting 


If you are having difficulty getting your printer to work, here are a few sug- 
gestions that might help you correct the problem. 


5.4.1 No Output - Nothing Prints 


The printer is idle; nothing happens. First, check the documentation that 
came with the printer to see if there is a self-test feature you can invoke. 
Make sure the printer is working before continuing. 

Is the Printer Connected to the Computer? 


Check the connections between the computer and the printer. 


Is the Printer Set Up Properly? 


Set up the printer as described in the “Printer Management” section of this 
chapter. If you receive error messages when doing this, follow the fixes sug- 
gested in the messages. 


When you finish setting up the printer, issue the following commands, where 
@ printer-name is the name you assigned to the printer. 


# /usr/lib/accept printer-name 


# enable printer-name 
Now submit a sample file for printing: 
$ lp -d printer-name -T printer-type filename 
If you haven’t specified a printer type for the printer, omit the -T printer-type 
option. 
Is the Baud Rate Correct? 


If the baud rate (the rate at which data is transmitted) is not the same for 
both the computer and the printer, the printer might not be able to print. 
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5.4.2 Mlegible Output 


The output from the printer is unreadable. 


Is the Baud Rate Correct? 


Usually, when the baud rate of the computer doesn’t match that of the print- 
er, you will receive some output, but it will not look like what you submitted 
for printing. Random characters will appear, with an unusual mixture of 
special characters and unlikely spacing. 


Read the printer documentation to determine the appropriate baud rate. If 
the printer is connected through a parallel port, the baud rate doesn’t matter. 


By default, the LP print service uses 9600 baud. If the printer uses a differ- 
ent baud rate, you can set that baud rate for the LP print service. Enter a 
command in the following form: 


# /usr/flib/lpadmin -p printer-name -o stty=baud-rate 


Now submit a sample file for printing. 


Is the Parity Setting Correct? 


Some printers use a parity bit to ensure that the data received for printing 
has not been garbled in transmission. The parity bit can be encoded in sever- 
al ways; the computer and the printer must use the same method. If they do 
not agree, some characters either will not be printed or will be replaced by 
other characters. Generally, though, the output will look approximately cor- 
rect, with the spacing of words typical for your document and many letters in 
their correct places. 


Check the printer documentation to see the parity setting the printer expects. 
By default, the LP print service does not set the parity bit. If the printer sets 
the parity bit, you can use one of the following commands to set the bit for 
the LP print service. 


The first command sets odd parity generation, the second command sets even 
parity. The last command sets no parity, which is the default value. 


# /usrfib/ipadmin -p printer-name -o stty=oddp 
# /usr/lib/lpadmin -p printer-name -o stty=evenp 


# /usr/lib/padmin -p printer-name -o stty=-parity 
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If you also need to set the baud rate, you can include it in the same com- 
mand, as shown in the following example. 


# /usr/ib/lpadmin —p printer-name -o "stty=’evenp 1200” 


Both double and single quotes are needed. 


Tabs Set Correctly? 


If the printer doesn’t expect to receive tab characters, the output can contain 
the complete contents of the file, but the text that was tabbed might appear 
against the right margin. See “No Left Margin/Runs Together/Text at Right 
Margin,” later in this section, for more information. 

Correct Printer Type? 


Refer to “Wrong Character Set or Font,” later in this section. 


5.4.3 Legible Printing, but Wrong Spacing 


The output contains all of the expected text and is readable, but the text is in 

the wrong format: double-spaced, no left margin, run together, or zig-zagging 
down the page. These problems can be fixed by adjusting the printer settings 

(if possible) or by having the LP print service use settings that match those of 
the printer. 

Double-Spaced 


Either the printer’s tab settings are wrong or the printer is adding a linefeed 
after each carriage return. (The LP print service adds a carriage return to 
each linefeed, so the combination causes two linefeeds.) 


The -tabs option tells the LP print service not to send tabs. 
# /usr/fib/lpadmin -p printer-name -o stty=-tabs 
The -onler option tells the LP print service not to add a carriage return. 


# /usr/ib/lpadmin -p printer-name -o stty=-onler 


No Left Margin/Runs Together/Text at Right Margin 


The printer’s tab settings are incorrect; they should be set every 8 spaces. 
The -tabs option tells the LP print service not to send tabs. 


# /usr/lib/padmin -p printer-name -o stty=-tabs 
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Text Zig-Zags Down the Page 


The onler option is needed. This is set by default, but you might have 
cleared it accidentally. 


# /usrfib/lpadmin -p printer-name -o stty=onler 


A Combination of Problems 


If you need to use several of these options to take care of multiple problems, 
you can combine them in a single command. Include the baud rate or parity 
settings. 


# /usr/ib/padmin -p printer-name -o "stty=—onlcr -tabs 2400°" 


Both double and single quotes are needed. 


Correct Printer Type? 
Refer to the next section, “Wrong Character Set or Font.” 


5.4.4 Wrong Character Set or Font @ 


If the wrong printer type was selected when you set up the printer, the wrong 
control characters can be sent to the printer. The results are unpredictable. 
Output might disappear or be illegible, making it look like a problem de- 
scribed earlier in this section. The wrong control characters could also cause 
the printer to set the wrong character set or font. 


If you don’t know which printer type to specify, use one of the following pro- 
cedures to locate the appropriate type. 


¢ Ifyou think the printer type has a certain name, try the following com- 
mand, replacing printer-type with the name. 


$ TERM=printer-type tput longname 


This command prints a short description of the printer identified by the 
printer-type. Continue to try the names you think might be right until 
you find one that identifies your printer. 


¢ Ifyou don’t know what names to try, you can examine the /usr/lib/ter- 
minfo directory to see the available names. Enter the following com- 
mand to examine the directory. 


$ Is -R /usr/lib/terminfo/* 
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Pick names from the list that match a word or number identifying your 
printer. Try each of the names in the TERM= command shown earlier. 


When you locate the correct printer type, enter a command in this form: 


# /usrfib/lpadmin —p printer-name -T printer-type 


5.4.5 Dial-Out Failures 


The LP print service uses the Basic Networking Utilities to handle dial out 
printers. If a dialing failure occurs and you are receiving printer fault alerts, 
the LP print service reports the same error reported by the Basic Networking 
software for similar problems. (If you haven’t arranged to receive fault 
alerts, they will be mailed to the user Ip.) 


5.4.6 Idle Printers 


If a printer is idle but enabled and print requests are queued for it, one of the 
following conditions might exist: 


¢ The print requests need to be filtered. Slow filters run one at a time to 
avoid overloading the system. Until a print request has been filtered (if 
it needs slow filtering), it will not print. Use the following command to 
see if the first request in the queue is being filtered. 


$ Ipstat -o -1 


¢ The printer has a fault. After detecting a fault, the LP print service 
waits about five minutes, then tries to resume printing. It continues 
trying until a request prints successfully. You can force an immediate 
retry by enabling the printer. 


# enable printer-name 


¢ A dial-out printer is busy or doesn’t answer, or all dial-out ports are 
busy. The LP print service waits five minutes before trying to reach a 
dial-out printer again. If the dial out printer can’t be reached for an 
hour or two (depending on the reason), the LP print service finally 
alerts you to a possible problem. You can force an immediate retry by 
enabling the printer. 


# enable printer-name 
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Lost child process. If the process controlling the printer is killed (by the 
operating system during periods of extremely heavy load, or by an ad- 
ministrator), the LP print service might not realize it for a few minutes. 
Disabling the printer and then reenabling it will force the LP print ser- 
vice to check for the controlling process and then to restart it. Make 
sure the printer is really idle before you do this. If a printer is disabled 
while it is printing a request, the request will have to be reprinted in its 
entirety. 


# disable printer-name 


# enable printer-name 


If the lost process is controlling a slow filter, don’t try to reenable the 
printer. Instead, put the print request at the head of the queue on hold. 
Then resume it, as shown below. (The first command list the requests 
in the queue.) 


# Ipstat -o -1 
# Ip -i request-id -H hold 


# Ip -irequest-id -H resume 
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5.5 Managing the Printing Load 


At times you will need to tell the LP print service to reject print requests for 
a specific printer. For example, you might need to take the printer out of ser- 
vice for maintenance purposes. When you do this, you should first move any 
print requests queued for that printer to another printer in your system. 


When you are ready to bring the printer back into service, you can tell the LP 
print service to start accepting requests for the printer. 


5.5.1 Moving Requests to Another Printer 


The LP print service allows you to move print requests from one printer 
queue to another. If you want to spread out the printing load among the 
printers in your system, you can move individual print requests. Ifa printer 
will be going out of service, you should move all of its print requests to an- 
other printer. 


To move specific print requests to another printer, type a command in this 
form: 


# /usr/lib/Ipmove request-id printer-name 
You can include more than one request-id on the command line. 


To move all print requests from one printer to another, type a command in 
the following form. printer-namel1 is the printer where the requests are 
queued, printer-name2 is the printer to which the requests will be moved. 


# /usr/ib/lpmove printer-namel printer-name2 


When you use this form of the command, the LP print service stops accepting 
requests for the first printer. (The reject command also tells the LP print 
service to stop accepting requests.) 


5.5.2 Rejecting Requests for a Printer or Class 


The reject command tells the LP print service to stop accepting print re- 
quests for a specific printer or class. The command has this form: 


# /usr/lib/reject -r "reason" printer-or-class-name 


If you include more than one printer or class on the command line, use spaces 
to separate the names. The -r option allows you to specify a reason for re- 
jecting print requests. The reason appears whenever anyone tries to print a 
file on the printer. If you don’t want to specify a reason, omit this option. 
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Although the reject command prevents new print requests from being ac- 
cepted, it will not move or cancel any requests currently queued for the print- 
er. Use lpmove to move the requests. 


5.5.3 Accepting Requests for a Printer or Class 


When you want a printer or class to start accepting print requests, enter a 
command in this form: 


# /usr/ib/accept printer-or-class-name 
You can specify more than one printer or class on the command line. 


This command tells the LP print service to start accepting requests for the 
printer or class you specified. You should issue this command in the following 
situations: 


¢ A printer that has been rejecting requests is ready to ‘return to service. 


¢ You have added a new printer or class to the LP service. 


5.5.4 Examples 
The following examples use the lpmove, reject, and accept commands. 
Example 1 


You need to perform some preventive maintenance on printer /p1. To pre- 
vent the loss of print requests, first move all requests for printer Jp1 to print- 
er [p2. After moving the requests, the LP print service will no longer accept 
requests for /p1 (you would obtain the same result by running the reject Ip1 
command before the lpmove command). 


# /usr/lib/pmove Ip1 Ip2 
At this point, you can disable the printer. 
Example 2 


Ip1 is now ready to return to service. The following command tells the LP 
print service to begin accepting print requests for /p1. 


# /usr/lib/accept Ip1 


If you disabled the printer earlier, you can now reenable it. 
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Example 3 


You notice that someone has queued several large files for the printer laser1. 
Meanwhile, laser2 is idle. Move the two largest requests (laser1-23 and 
laser1-46) to laser2 and reject any new requests for laser! for the time be- 
ing. 


# /usr/fib/pmove laser1-23 laser1-46 laser2 


# /usr/lib/reject -r "too busy--will reopen later" laser1 
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5.6 Managing Printer Queues 


The LP print service allows users to assign a priority level to each print re- 
quest. In the print queue, requests having a higher priority are placed ahead 
of requests having a lower priority. This section describes commands that al- 
low you to control the priority levels for print requests submitted to a print 
queue. You can limit the priority levels that individual users can specify for 
a print request and you can‘set a default priority level. You can also move a 
print request within a queue or put it on hold. 


5.6.1 Printer Queue Setup 


The print service uses priority levels to adjust the position of a print request 
in the queue. Users can assign a priority level to each print request they sub- 
mit. A priority level is a number from 0 to 39. 0 is the highest priority; 39 is 
the lowest priority. In the print queue, requests having a higher priority go 
ahead of requests having a lower priority. 


You can assign a priority limit to any of the users on your system. Users can- 
not specify a priority level higher than their limit. However, they can specify 
a lower priority. You can also set up a default priority limit that applies to 
all users who were not assigned a personal limit. For example, you might 
want to allow some users to specify priority level 1 for their requests; you 
would assign a priority limit of 1 to those users. You could then set a default 
priority limit for the rest of the users on your system, preventing them from 
requesting a priority level above that limit. 


You can also set a default priority level. This level applies when users do not 
specify priority levels in their print requests. 


Setting User Priority Limits 


The lpuser command sets a priority level for specific users. If /usr/lib is not 
in your path, you must type the entire pathname (/usr/lib/Ipuser) when you 
use this command. 


To set a priority limit for one or more users, type a command in the following 
form. (priority-limit is a number from 0 to 39; 0 is the highest priority.) If 
you specify more than one user name, use commas or spaces to separate the 
names, (If you use spaces, enclose the list of names in quotes.) 


# Ipusers -q priority-limit -u users 


If you want to set a priority limit for all other users, enter a command in the 
following form, where priority-level is a number from 0 to 39. 
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# lpusers -q priority-limit 
This limit applies to all users who have not been assigned a personal priority 
limit. 
If you want to change a user’s priority limit, reenter the lpusers command 


and specify a new limit. If you want to remove a priority limit for one or 
more users, enter a command in this form: 


# /usr/lib/Ipusers -u users 


The default priority limit now applies to these users. 


Setting a Default Priority Level 


If a user does not specify a priority level for a print request, the print service 
applies the default priority level to the request. The initial default priority 
level is 20. However, you can change this priority level if you want. To do 
this, type a command in the following form, where priority-level contains the 
level you want to use as the default. 


# lpusers -d priority-level 
Don’t confuse this priority level with the default priority limit. The default 
priority level applies when a user doesn’t specify a priority level. The default 
priority limit applies if you haven’t assigned a priority limit to a user. 
Examining Priority Limits 


The following command allows you to examine the settings you have assigned 
with the lpusers command. 


# /usr/lib/lpusers -1 


5.6.2 Moving a Request in the Queue 
You can move a print request within a print queue in the following ways: 


¢ Adjust the priority of a print request to any level, regardless of the 
user’s priority limit. 


¢ Put a print request on hold. 


¢ Move a print request to the head of the queue. 


The following paragraphs describe each of these procedures. 
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Changing the Priority for a Request 


If you want to move a print request up or down in the print queue, you can 
assign a new priority level to it. The LP print service will then move the 
print request so that it will be ahead of lower-priority requests and behind re- 
quests having the same or a higher level. This step overrides the priority lim- 
it assigned to the user as well as the default priority limit. 


To change the priority level for a print request, type a command in this form: 
# Ip -i request-id -q priority-level 


You can change only one request at a time. 


Putting a Request on Hold 


You can put any print request on hold. If the request is currently printing, 
the printing will stop. Users can place only their own requests on hold. 


To place a request on hold, enter a command in this form: 
# Ip -i request-id -H hold 


When you are ready to print the request, use the resume command to rein- 
state the request. Users can reinstate requests they have put on hold, but 
they cannot reinstate requests the system administrator put on hold. To re- 
instate a request, enter a command in the following form: 


# Ip -i request-id -H resume 


The request will now move up the queue and will eventually print. If the re- 
quest was printing when you put it on hold, it will be the next request to 
print. 


Normally, printing begins on page one; you can, however, start the printing 
on a later page. Enter a command in the following form if you want to start 
printing on another page: 


# lp -i request-id -H resume -P page-number- 
The final dash indicates that all pages following the page you specified are to 
print. 


To print only part of a file, your site must be using a filter having this capa- 
bility. The default filter used by the LP print service does not have this capa- 
bility. If your site is not using an appropriate filter, the print service will re- 
ject attempts to resume printing on a later page. 
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Moving a Request to the Head of the Queue 


You can also move a print request to the head of the queue. If you want the 
print request to start printing immediately but another request is currently 
printing, place the first request on hold, as described in the previous section. 


To move a print request to the head of the queue, type the Ip command and 
include the -H option followed by the word immediate. 
# Ip -i request-id -H immediate 


Only the system administrator can move a print request to the head of the 
queue. If you use the -H immediate option for more than one print request, 
the last request to be moved to the head of the queue will print first. 


Operations Guide: sysadm 5-43 
1003-48607-00 


LP Print Service Administration 


5.7 Forms Setup 


The print service can keep track of print requests requiring a preprinted 
form (such as checks, invoices, letterhead, or labels) and can alert you to 
mount the form. 


This section tells how to define a form to the print service, how to specify the 
notification method used when a form needs to be mounted, how to restrict 
user access to a form, and how to delete a form from the print service. 


“Mounting a Form or Print Wheel,” earlier in this chapter, describes how to 
tell the print service that forms have been loaded and it can print the appro- 
priate print requests. 


5.7.1 Defining a Form 


When you add a new form, you must use the Ipforms command to define its 
characteristics. The print service uses this information to initialize the print- 
er and to send you reminders about the form. 


- You will need to provide the following information: 


Page length 
The length of the form, or of each page in a multipage form. You can 
specify the length as a number of lines or as the size in inches or cen- 
timeters. 


Page width 
The width of the form, expressed in columns, inches, or centimeters. 


Number of pages 
The number of pages in a multipage form. 


If a filter is available, the print service uses this number to restrict 
the alignment pattern to the length of one form. If no filter is avail- 
able, the LP print service does not truncate the output from the align- 
ment pattern. 


Line pitch 
A measurement specifying the number of lines either per inch or per 
centimeter. 

Character pitch 


A measurement specifying the number of characters either per inch 
or per centimeter. 
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Character set choice 
The character set, print wheel, or font cartridge used to print this 
form. You can allow the user to specify a different character set (or 
print wheel or font cartridge) or you can require that a specific char- 
acter set (or print wheel or font cartridge) be used. 


Ribbon color 
If the form requires a specific color of ribbon, the LP: print service can 
remind you to use that ribbon when you mount the form. 


Comment 
Any comment you want to make about the form. 


Alignment pattern 
This is a sample of the text that will print on the form. It allows you 
to determine if the forms are lined up properly in the printer. If nec- 
essary, you can adjust the forms in the printer and then repeat the 
alignment pattern. 


The print service does not try to mask sensitive information in an 
alignment pattern. If you do not want sensitive information to print 
on sample forms, you should mask the appropriate data. Only the 
users Ip and root can read the file containing the alignment pattern. 


You can record this information in a file and then use the file as input to the 
Ipforms command, or you can type each piece of information on the com- 
mand line. With either method, you must enter the information in the follow- 
ing format: 


Page length: scaled-number 
Page width: scaled-number 
Number of pages: integer 

Line pitch: scaled-number 
Character pitch: scaled-number 
Character set choice: character-set-namemandatory 
Ribbon color: ribbon-color 
Comment : 

comment 

Alignment pattern: 
alignment-pattern 


With two exceptions, the information can appear in any order. The excep- 
tions are the alignment pattern (which must always appear last) and the 
comment (which must always follow the line with the Comment: prompt). If 
the comment contains a line beginning with a key phrase (such as Page 
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length, Page width, and so on), begin the line with a greater-than charac- 
ter (>). This character does not appear when you view the comment on the 
screen. 


You don’t need to specify all of the information. If you don’t specify an item, 
the print service assigns the default value, as shown below. 


Page length 66 lines 
Page width 80 columns 
Number of pages 1 

Line pitch 6 
Character pitch 10 
Character set choice any 
Ribbon color any 
Comment (no default) 
Alignment pattern (no default) 


If you write a form definition in a file, use a command such as the following to 
supply the definition to the lpforms command. The form name can be up to 
14 characters long and can include letters, digits, and underscores. 


# /usr/ib/pforms -f form -F file 


If you want to supply the form definition on the command line, type a com- 
mand in the following form. The form name can be up to 14 characters long 
and can include letters, digits, and underscores. 


# /usr/lib/lpforms -f form - 


After typing the final hyphen, go to the next line and begin typing the form 
definition. 


If you need to change a form, just reenter the appropriate command. You 
need to provide information only for the items that will change. 
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5.7.2 Viewing a Form Definition 
After you set up a form, you can use the Ipforms command to look at its defi- 
nition. 

# Ipforms -f form -1 
You can also use the lpstat command to look at a form definition. When you 
type the command, you will receive a status message regarding the form. 

# Ipstat -f form 
If you add the -1 option, the definition of the form also appears. (The display 
does not include the alignment pattern.) 


# Ipstat -f form -l 


5.7.3 Removing a Form Definition 


If you are no longer using a form, you should delete the definition for that 
form. To do this, use the -x option to the lpforms command. 


# lpforms -f form -x 


5.7.4 Restricting Access to a Form 


If it is necessary to restrict access to a form, you can specify the users al- 
lowed to print that specific form. If you don’t set up this option, all users can 
issue print requests for the form. 


You can use an allow list and a deny list to specify the users able to print the 
form. The allow list contains names of users allowed to print the form; the 
deny list contains users that cannot print it. If there are entries in the allow 
list, the print service ignores the deny list. If there are no entries in the allow 
list, the print service uses the deny list. If both lists are empty, everyone can 
use the form. 


To add user names to the allow list, type a command as shown below. Ifa 
user name was already in the deny list, it will be removed from that list. To 
allow all users to request the form, specify allowsall. 


# Ipforms -f form -u allow:users 


To add user names to the deny list, type a command as shown below. Ifa 
user name was already in the allow list, it will be removed from that list. If 
you don’t want regular users to be able to request the form, type deny:all. 
In this case, only Ip and root will be able to request the form. 
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# lpforms -f form -—u deny:users 


If you specify multiple user names, use commas or spaces to separate the 
names. If you use spaces, enclose the list (including allow: or deny:) in 
quotes. 


5.7.5 Notification to Mount a Form 


When a user creates a print request for a particular form, the request is held 
in the print queue until you tell the print service that you have mounted the 
form. 


The print service can notify you when a print request asks for a particular 
form. The -A option to the lpforms command lets you specify how you want 
to be alerted: by a mail message, by a message on your screen, or by another 
command. You can also choose not to receive alerts. If you do not specify an 
alert method, you will not receive an alert when a form needs to be mounted. 
Instead, you must monitor the queue for this type of print request. 


In the following commands, the -Q option indicates the number of print re- 
quests that must be waiting for the form before you are alerted. The —W op- 
tion indicates the number of minutes between alerts. If you want to receive 
just one alert, omit this option. 


¢ To receive a mail message (via the mail program), type a command in 
this form: 


# Ipforms -f form -A mail -Q integer —W minutes 
¢ To have a message written to your terminal (via the write command), 
type a command in this form: 


# Ipforms -f form -A write -Q integer -—W minutes 


¢ To specify that another command be run, type a command in this form: 
# lpforms -f form -A ‘command’ -Q integer —W minutes 


The shell environment in effect when you enter this command is saved 
and then restored when command executes. If you want another person 
to be notified when a form must be mounted, type the appropriate -A 
option: 


-A ‘mail user’ 


-A ‘write user’ 
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¢ Ifyou don’t want to receive alerts, type a command in this form: 


# Ipforms -f form -A none 


If you are receiving repeated alerts, you can issue the following command to 
tell the print service to stop sending alerts. If you are receiving alerts for 
more than one form, you can stop all of the alerts by typing all as the form. 


# lpforms -f form -A quiet 
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6.1 Introduction 


This chapter describes the TTY subsystem. Chapter P6 in the first half of the 
guide contains the procedures you can use to maintain the system. 


This chapter defines TTY terms and describes how the TTY system works. It 
also tells how to perform these tasks: 


¢ View existing line settings. 
¢ Create new line settings and hunt sequences. 
© Modify TTY line characteristics. 


¢ Set terminal options. 


6.1.1 Terms 


The following terms are used in this chapter: 

TTY. Derived from the abbreviation for teletypewriter, this term covers the 
whole area of access between the operating system and peripheral devices, 
including the system console. It shows up in commands such as getty(1M) 
and stty(1), in the names of device special files such as /deuv/ttyGA/GAAA, 
and in the names of files such as /etc/gettydefs, which is used by getty. 


TTY line. The physical equipment through which access to the computer is 
made. 


port. A synonym for TTY line. 
line settings. A set of line characteristics. 


bit rate. The speed at which data is transmitted over the line. 
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mode. The characteristics of the terminal interface. The TTY line and the 
terminal must be working in the same mode before communication can take 
place. Described in termio(7). 


hunt sequence. A circular series of line settings. During the login se- 
quence, a user looking for a compatible connection to the computer can go 
from one setting to the next by sending a BREAK signal. 


terminal options. Selectable settings that define the way a given terminal 
operates. Described in termio(7). 


6.2 The TTY System 


The remaining sections in this chapter describe how the TTY system operates 
and tell how you can administer it. 


6.2.1 How the TTY System Works 


A series of four processes (init(1M), getty(1M), login(1), sh(1)) connects a 
user to the operating system. init is a general process spawner that is in- 
voked as the last step in the boot procedure. Guided by the /etc/inittab file, 
init spawns a getty process for each line on which users can log in. 


The getty command requires a line argument. This argument is the name of 
a special file in the /dev directory. For a description of other arguments that 
can be used with getty, see the Reference Manual. 


A user attempting to make a connection generates a request-to-send signal 
that is routed by the hardware to the getty process for one of the TTY line 
files in /dev. (We’re omitting how the signal gets from the user’s terminal to 
the computer.) getty responds by sending an entry from the /etc/gettydefs 
file down the line. The gettydefs entry used depends on the speed argument 
provided with the getty command. (In the SYNOPSIS of the getty(1M) com- 
mand the argument name is speed, but it is really a pointer to the label field 
of a gettydefs entry.) If no speed argument is provided, getty uses the first 
entry in gettydefs. 


Among the fields in the gettydefs entry (described later in this chapter) is the 
login prompt. On receiving the login prompt, the user enters a login name. 
getty starts login, using the login name as an argument. login issues the 
prompt for a password, evaluates the user’s response, and, assuming that the 
password is acceptable, calls in the shell program listed in the /etc/passwd 
entry for the user. If no shell is named, /bin/sh is furnished by default. lo- 
gin also executes /etc/profile. 
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/bin/sh executes the user’s .profile (or .login), if it exists. This file often con- 
tains stty commands to reset terminal options. The connection between the 
user and the operating system has now been made. 


6.2.2 Displaying Line Settings 
There are two ways to check existing line settings: 


1. Use the system administration menus, specifically the sysadm(1) 
lineset subcommand. This command first shows the full range of line 
settings, then lets you examine a line in detail. 


2. Look directly in /etc/gettydefs. 
The /etc/gettydefs file contains information used by the getty(1M) command 


to establish the speed and terminal settings for a line. The general format of 
the gettydefs file is as follows: 


label# initial-flags # final-flags #login-prompt #next-label 


Following are a few lines from a sample gettydefs file. 
4800H# B4800 # B4800 SANE IXANY TAB3 HUPCL #login: #9600H 


9600H# B9600 # B9600 SANE IXANY TAB3 HUPCL #login: #19200H 
19200H# B19200 # B19200 SANE IXANY TAB3 HUPCL #login: #2400H 
2400H# B2400 # B2400 SANE IXANY TAB3 HUPCL #login: #1200H 
1200H# B1200 # B1200 SANE IXANY TAB3 HUPCL #login: #300H 


300H# B300 # B300 SANE IXANY TAB3 HUPCL #login: #4800H 


These entries form a single, circular hunt sequence; the last field on each line 
is the label of the next line. The next-label field for the last line points back 
to the first line in the sequence. The object of the hunt sequence is to link a 
range of line speeds. If you see garbage characters instead of a clear login 
prompt, entering a BREAK causes getty to step to the next entry in the se- 
quence. The hunt continues until the communication rate of the line matches 
the speed of the user’s terminal. The flag fields shown have the following 
meanings: 
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B300-B19200 The communication rate (bits-per-second) of the line. 
HUPCL Hang up on close. 


SANE A composite flag that stands for a set of normal line charac- 
teristics. 

IXANY Allow any character to restart output. If this flag is not speci- 
fied, only DC1 (Ctrl-Q) will restart output. 

TAB3 Send tabs to the terminal as spaces. 


For a description of all getty flags, see termio(7). 


6.2.3 Creating New Line Settings and Hunt Sequences 
There are two ways to create line setting and hunt sequences: 


1. Use the system administration menus, specifically the sysadm 
mklineset(1) subcommand. This command leads you through a series 
of prompts; your responses make up the information for a new gettydefs 
entry. 


2. Use ed(1) or vi(1) to edit /etc/gettydefs. 
If you want to use an editor to create new lines for the gettydefs file, use the 


existing lines as examples. Each entry in the file is followed by a blank line. 
After editing the file, run this command: 


# /etc/getty -c /etc/gettydefs 


This command causes getty to scan the file and then print the results on 
your terminal. Any unrecognized modes or improperly constructed entries 
are reported. 


6.2.4 Modifying TTY Line Characteristics 
There are two ways to modify TTY line characteristics: 


1. Use the system administration menus, specifically the sysadm 
modtty(1) subcommand. This command leads you through a series of 
prompts; your responses edit a “getty” entry in /etc/inittab. 


2. Use ed(1) or vi(1) to edit /ete/inittab. 


The /etc/inittab file contains instructions for the /ete/init(1M) command. 
The general format of a line entry in the /etc/inittab file is as follows. 
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identification:level:action:process 


Each line contains four fields separated by colons: 


identification An identifier (1 to 4 characters long) for the line entry. 


level The run level in which the entry is to be performed. 

action How /etc/init treats the process field (refer to the inittab(4) 
manual page for complete information). 

process The shell command to be executed. 


/etc/inittab contains several entries that spawn getty processes. Following 
are some sample entries: 


co:234:respawn:/etc/getty syscon console sqnt200 


GAAA:2:respawn:/etc/getty ttyAA/GAAA 9600 sqnt200 
GAAB:2:respawn:/etc/getty ttyAA/GAAB 9600 sqnt200 
GAAC:2:respawn:/etc/getty ttyAA/GAAC 9600 sqnt200 
GAAD:2:o0ff:/etc/getty ttyAA/GAAD 9600;#line not in use 


GAAE:2:0ff£:/etc/getty ttyAA/GAAE 9600;#line not in use 


Following are some changes you might want to make to an inittab entry for a 
TTY line: 


Change the action. Two actions that apply to TTY lines are “respawn” 
and “off” (see the inittab(4) manual page for complete information on 
this field). 


Add or change arguments in the process field. For example, you can 
add the terminal type, as shown in the preceding examples. If you do 
this, the system can determine the terminal type when a user logs in on 
the line. 


Another frequently used argument is -tnn. This tells getty to hang up if 
nothing is received within nn seconds. It’s good practice to use the -t 
argument on dial-up lines. 


Add or change comments. Comments can be inserted after a command. 
Type a semicolon (;) to end the command, then type a pound sign (#) fol- 
lowed by the comment. 
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6.2.5 Setting Terminal Options 


The TTY system establishes a basic style of communication between the 
user’s terminal and the operating system. After logging in, the user can spec- 
ify additional terminal options. 


The stty command controls terminal options. Many users add an stty com- 
mand to their .profile (or .login) so the options they want are automatically 
set as part of the login process. Here is an example of a simple stty com- 
mand. 


$ stty cr0 nl0 echoe -tabs erase “H 


The options in the example have these meanings: 


cr0nl0 No delay for carriage return or newline. Delays are not used on a 
video display terminal, but are necessary on some printing termi- 
nals to allow time for the mechanical parts of the equipment to 
move. 


echoe Erases characters as you backspace. 
-tabs Expand tabs to spaces when printing. 


erase “H Change the delete character to(t-H). The default delete charac- 
ter is the pound sign (#). Because most terminals transmit(Ci-) 
when (@ackSpace) is pressed, specifying this option makes 
useful. 
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Chapter 7 
Basic Networking 


7.1 Introduction 


This chapter describes the Basic Networking system. Chapter P7 in the first 
half of this manual contains the procedures you can use to set up and main- 
tain the system. 


The basic networking utilities enable computers using the UNIX operating 
system to communicate with each other and with remote terminals. These 
utilities range from those used to copy files between computers (uucp and 
uuto) to those used for remote login and command execution (cu, ct, and 
uux). 


As an administrator, you need to be familiar with the administrative tools, 
logs, and database files used by these utilities. Chapter P7, “Basic Network- 
ing,” tells how to maintain these utilities. This chapter goes into greater de- 
tail about the files, directories, daemons, and commands involved with these 
utilities. 


7.2 Networking Hardware 


Before your computer can communicate with other computers, you must set 

up the hardware to complete the communications link. The cables and other 
hardware you need depend on how you want to connect the computers: over 
direct links, telephone lines, or local area networks. 


Direct Links 
You can create a direct link to another computer by running cables 
between serial ports on the two computers. Direct links are useful 
when two computers communicate regularly and are physically 
close—within 50 feet of each other. You can use a limited distance 
modem to increase this distance somewhat. Transfer rates of up to 
19200 bits per second (bps) are possible when computers are directly 
linked. 
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Telephone Lines 
An Automatic Call Unit (ACU) allows your computer to communicate 
with other computers over standard telephone lines. The ACU dials 
the telephone number requested by the networking utilities. The 
computer it is trying to contact must have a telephone modem cap- 
able of answering incoming calls. 


Local Area Network 
A Local Area Network (LAN) can be the communication medium for 
basic networking. When your computer is established as a node on a 
LAN, it can contact any other computer connected to the LAN. 


7.3 Networking Commands 


Basic networking programs can be divided into two categories: user pro- 
grams and administrative programs. The following paragraphs describe the 
programs in each category. 


7.3.1 User Programs 


The user programs for basic networking are in /usr/bin. No special permis- 
sion is needed to use these programs, which are described in the Reference 
Manual. 


cu Connects your computer to a remote computer, allowing you 
to be logged in on both computers at the same time. You can 
transfer files or execute commands on either computer with- 
out dropping the initial link. 


et Connects your computer to a remote terminal, enabling the 
user of the remote terminal to log in. This command also en- 
ables the user on the remote terminal to call the computer 
and request that the computer call it back. In this case, the 
computer drops the initial link so that the remote terminal’s 
modem will be available when it is called back. 


uucp Lets a user copy a file from one computer to another. This 
command creates work files and data files, queues the job for 
transfer, and calls the uucico daemon, which in turn at- 
tempts to contact the remote computer. 
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uuto Copies files from one computer to a public spool directory 
(/usr/spool/uucppublic/ receive) on another computer. Un- 
like uucp, which lets you copy a file to any accessible direc- 
tory on the remote computer, uuto places the file in an appro- 
priate spool directory and tells the remote user to pick up the 
file with uupick. 


uupick Retrieves files that uuto has placed in the 
/usr/spool/uucppublic/receive directory. 


uux Creates the work, data, and execute files needed to execute 
commands on a remote computer. The work file contains the 
same information as work files created by uucp and uuto. 
The execute files contain the command string to be executed 
on the remote computer as well as a list of the data files. The 
data files are those files required for the command execution. 


uustat Lists the status of requested transfers (uucp, uuto, or uux). 
It also provides you with a means of controlling queued 
transfers. 


7.3.2 Administrative Programs 


Most of the administrative programs, database files, and shell scripts are in 
the /usr/lib/uucp directory. The only exception is uulog, which is in 
/usr/bin. These commands are described in the Reference Manual. 


You should use the uuep login when you administer the basic networking 
utilities because it owns the basic networking and spooled data files. The 
home directory of the uucp login is /usr/lib/uucp. (The other basic net- 
working login, nuucp, is used by remote computers to access your computer. 
Calls from nuuep are answered by uucico.) 


uulog Lists the contents of the log files for a specified computer. 
Log files are created for each remote system that communi- 
cates with your computer. The log files contain records of 
each use of uucp, uuto, and uux. 


uucleanup Cleans up the spool directory. This command is normally exe- 
cuted from a shell script called uudemon.cleanup, which is 
started by cron. 
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Uutry 


uucheck 


Tests call processing capabilities and does a moderate amount o 
of debugging. This command invokes the uucico daemon to 

establish a communication link between your computer and 

the remote computer you specify. 


Checks for the presence of basic networking directories, pro- 
grams, and support files. It can also check certain parts of 
the Permissions file for obvious syntactic errors. 


7.4 Daemons 


The basic networking utilities include three daemons. (A daemon is a routine 
that runs as a background process and performs a system-wide public func- 
tion.) These daemons handle file transfers and command executions. They 
can also be run manually from the shell. 


uucico 


uuxqt 


7-4 


Selects the device used for the link, establishes the link to the 
remote computer, performs the required login sequence and 
permission checks, transfers data and execute files, logs the 
results, and notifies the user by mail when the transfer com- 
pletes. When the local uucico daemon calls a remote com- 
puter, it “talks” to the uucico daemon on the remote comput- 
er. 


After all required files have been created, the uucico daemon 
is executed by the uucp, uuto, and uux programs to contact 

the remote computer. It is also executed by the uusched and 
Uutry programs. 


Executes remote execution requests. It searches the spool di- 
rectory for execute files (always named X.file) that have been 
sent from a remote computer. When an X.file file is found, 
uuxqt opens it to obtain the list of data files that are required 
for the execution. It then determines whether the required 
data files are available and accessible. If the files are present 
and can be accessed, uuxqt checks the Permissions file to 
verify that it has permission to execute the requested com- 
mand. The uuxqt daemon is executed by the 
uudemon.hour shell script, which is started by cron. 
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uusched 


Schedules the queued work in the spool directory. Before 
starting the uucico daemon, uusched determines the order 
in which remote computers will be called. uusched is exe- 
cuted by a shell script called uudemon.hour, which is start- 
ed by cron. 


UUCP also uses the following internal program. 


uugetty 


This program is very similar to the getty program. However, 
it permits a line (port) to be used in both directions. If you 
specify “bidirectional” when you use the sysadm portmgmt 
command to modify a port in the /etc/inittab file, a uugetty ° 
will be assigned to the port. uugetty is executed as a func- 
tion of the init program and is described in the Reference 
Manual. 


7.5 Supporting Database 


The support files are in the /usr/lib/uucp directory. You can make most 
changes to these files by using the system administration menu commands 
described in Chapter P7, “Basic Network Procedures.” The descriptions in 
this section provide details on the structure of these files so that you can edit 
them manually. 


Devices 


Dialers 


Systems 


Contains information about the location and line speed of the 
automatic call unit, direct links, and network devices. 


Contains character strings required to negotiate with network 
devices (automatic calling devices) in the establishment of 
connections to remote computers (non-801-type dialers). 


Contains information needed by the uucico daemon and the 
cu program to establish a link to a remote computer. This in- 
formation includes the name of the remote computer, the 
name of the connecting device associated with the remote 
computer, when the computer can be reached, its telephone 
number, and the login and password your system must use to 
log in on the remote computer. 
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Dialcodes Contains dial-code abbreviations that can be used in the 
phone number field of Systems file entries. 


Permissions Defines the level of access granted to computers when they at- 
tempt to transfer files or to execute commands on your com- 


puter. 

Poll Defines computers that are to be polled by your system and 
specifies when they are to be polled. 

Devconfig Configures the utilities for a transport provider conforming to 
the AT&T Transport Interface. 

Sysfiles Assigns different or multiple files to be used by uucico and 


cu as Systems, Devices, and Dialers files. 


There are several other files that may be considered part of the supporting 
database, but they are not directly related to the process of establishing a 
link and transferring files. These files—Maxuuxqts, Maxuuscheds, and re- 
mote.unknown—are described briefly in Chapter P7, “Basic Network Proce- 
dures.” 


7.5.1 Devices File 


The Devices file (/usr/lib/uucp/ Devices) contains information about the de- 
vices that can be used to establish a link to a remote computer. These de- 
vices include automatic call units, direct links, and network connections. 


NOTE 


This file works closely with the Dialers, Systems, and Dial- 
codes files. Before modifying any of these files, you should be 
familiar with them all. A change to an entry in one file can re- 
quire a change to a related entry in another file. 


Each entry in the Devices file has this format: 
Type Line Line2 Class Dialer-Token-Pairs 


The fields in an entry contain this information: 
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This field can contain either a keyword (Direct or ACU), the name of 
a Local Area Network switch, or a system name. 


¢ Direct: This keyword indicates either a direct link to another 
computer or a switch (for cu connections only). 


e ACU: This keyword indicates that the link to a remote comput- 
er is made through an automatic call unit (Automatic Dial 
Modem). This modem can be connected either directly to your 
computer or indirectly through a Local Area Network (LAN) 
switch. 


¢ LAN_Switch: This value can be replaced by the name of a LAN 
switch. micom and develcon are the only switches having 
caller scripts in the Dialers file. (You can add your own LAN 
switch entries to the Dialers file.) If you are setting up an 
AT&T Transport Interface-compatible network, you would use 
the special dialer types TLI or TLIS. 


¢ Sys-Name: This value indicates a direct link to a particular 
computer. (Sys-Name is replaced by the name of the computer.) 
This naming scheme specifies that the line associated with this 
Devices entry is for a particular computer in the Systems file. 


The keyword used in the Type field is matched against the third field 
of Systems file entries as shown below: 


Devices: ACU ttyGA/GAAH - 1200 penril 


Systems: eagle Any ACU 1200 3251 ogin: nuucp \ 
ssword: Oakgrass 


You can also designate a protocol to be used for a device. See the 
“Protocols” section at the end of the description of this file. 


This field contains the device name of the line (port) associated with 
the Devices entry. For example, if the Automatic Dial Modem for a 
particular entry were attached to the /dev/ttyGA/GAAH line, the 
name entered in this field would be ttyGA/GAAH. 


If the keyword ACU is used in the Type field and the ACU is an 
801-type dialer, Line2 will contain the device name of the 801 dialer. 
(801-type ACUs do not contain a modem. Therefore, a separate 
modem is required and would be connected to a different line that is 
defined in the Line field.) This means that one line would be allocat- 
ed to the modem and another to the dialer. Since non-801 dialers do 
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Class 


not normally use this configuration, they will ignore the Line? field, 
but it must still contain a hyphen (-) as a placeholder. 


If the keyword ACU or Direct is used in the Type field, Class can be 
just the speed of the device. However, it can contain a letter anda 
speed (for example, C1200, D1200) to differentiate between classes of 
dialers (Centrex or Dimension PBX). This is necessary because many 
larger offices have more than one type of telephone network: one net- 
work might be dedicated to serving only internal office communica- 
tions while another handles the external communications. In such a 
case, it becomes necessary to distinguish between the lines used for 
internal communications and the lines used for external communica- 
tions. The keyword used in the Class field of the Devices file is 
matched against the fourth field of Systems file entries as shown be- 
low: 


Devices: ACU ttyGA/GAAH - D1200 penril 


Systems: eagle Any ACU D1200 3251 ogin: nuucp \ 
ssword: Oakgrass 


If a device can be used at any speed, the keyword Any can be used in 
the Class field. If Any is used, the line will match any speed request- 
ed in a Systems file entry. If this field is Any and the Systems file 
Class field is Any, the speed defaults to 1200 bps. 


Dialer-Token-Pairs: 


This field contains pairs of dialers and tokens. The dialer portion can 
be the name of an automatic dial modem or a LAN switch, or it can 
be direct for a direct link device. You can have any number of Di- 
aler-Token-Pairs. The token portion can immediately follow the di- 
aler portion. If it is omitted, it will be taken from a related entry in 
the Systems file. 


This field has the following format: 


dialer token dialer token 


The last pair may or may not be present, depending on the associated 
device (dialer). In most cases, the last pair contains only a dialer por- 
tion and the foken portion is retrieved from the Phone field of the Sys- 
tems file entry. 


A valid entry in the dialer portion can be defined in the Dialers file or 
it can be one of several special dialer types. These special dialer 
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types, which are listed below, are compiled into the software and are 
available without having entries in the Dialers file. 


¢ 801 -— Bell 801 autodialer 
¢ TLI-— Transport Level Interface Network (without STREAMS) 
¢ TLIS — Transport Level Interface Network (with STREAMS) 


The Dialer-Token-Pairs (DTP) field can be structured in four differ- 
ent ways, depending on the device associated with the entry: 


¢ Ifan automatic dialing modem is connected directly to a port on 
your computer, the DTP field of the associated Devices file entry 
will have only one pair. This pair would normally be the name 
of the modem. This name is used to match the Devices file entry 
with an entry in the Dialers file. Therefore, the dialer field 
must match the first field of a Dialers file entry: 


Devices: ACU ttyGA/GAAH - 1200 ventel 


Dialers: ventel =&-% "" \r\p\r\c $ <K\T%%\r>\c ONLINE! 


Notice that only the dialer portion (ventel) is present in the 
DTP field of the Devices file entry. This means that the token to 
be passed on to the dialer (in this case, the phone number) is 
taken from the Phone field of a Systems file entry (\T is im- 
plied). The backslash sequences are described later in this sec- 
tion. 


° Ifa direct link is established to a particular computer, the DTP 
field of the associated entry would contain the keyword direct. 
This is true for both types of direct link entries, Direct and Sys- 
tem-Name (refer to discussion on the Type field). 


¢ Ifa computer you want to reach is on the same local network 
switch as your computer, your computer must first access the 
switch. The switch can then make the connection to the other . 
computer. In this type of entry, there is only one pair. The di- 
aler portion is used to match a Dialers file entry: 


Devices: develcon ttyGA/GAAI - 1200 develcon \D 


Dialers: develcon"""" \pr\ps\c est:\007 \E\D\e \007 
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As shown, the token portion is blank, which indicates that it is 
retrieved from the Systems file. The Systems file entry for this 
particular computer will contain the token in the Phone field, 
which is normally reserved for the phone number of the comput- 
er (refer to the discussion of the Phone field in the Systems file). 
This type of DTP contains an escape character (\D), which en- 
sures that the contents of the Phone field will not be interpreted 
as a valid entry in the Dialcodes file. 


If an automatic dialing modem is connected to a switch, your 
computer must first access the switch, which will make the con- 
nection to the automatic dialing modem. This type of entry re- 
quires two dialer-token-pairs. The dialer portion of each pair 
(the fifth and seventh fields of the entry) is used to match en- 
tries in the Dialers file: 


Devices: ACU ttyGA/GAAJ - 1200 develcon vent ventel 


Dialers: develeon "" "" \pr\ps\c est:\007 \E\D\e \007 
Dialers: ventel =&-% "" \r\p\r\c $ <K\T%%\r>\c ONLINE! 


In the first pair, develcon is the dialer and vent is the token 
that is passed to the Develcon switch to tell it which device (ven- 
tel modem) to connect to your computer. Because each LAN 
switch can be set up differently, this token would be unique for 
each switch. After the ventel modem is connected, the second 
pair is accessed, where ventel is the dialer and the token is 
retrieved from the Systems file. 


There are two escape characters that can appear in a DTP field: 


\T 


Indicates that the Phone (token) field should be translated us- 
ing the Dialcodes file. This escape character is normally 
placed in the Dialers file for each caller script associated with 
an automatic dial modem (penril, ventel, and so on). There- 
fore, the translation will not take place until the caller script 
is accessed. 


Indicates that the Dialcodes file should not be used to trans- 
late the Phone (token) field. If no escape character is specified 
at the end of a Devices entry, the \D is assumed (default). A 
\D is also used in the Dialers file for entries associated with 
network switches (develcon and micom). 
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You can define the protocol to use with each device. In most cases, this is un- 
necessary because you can use the default or define the protocol with the par- 
ticular system you are calling (see Systems file, type field). If you do specify 
the protocol, you must use the form Type,Protocol. The available protocols 
are as follows: 


g This protocol is slower and more reliable than e. It is good for trans- 
mission over noisy telephone lines. 


e This protocol is faster than g, but it assumes error-free transmission. 


For reliable local area networks, you should use the e protocol. 


7.5.2 Dialers File 


The Dialers file (/usr/lib/uucp/ Dialers) specifies the initial conversation 
that must take place on a line before it can be made available for transferring 
data. This conversation is usually a sequence of ASCII strings that is trans- 
mitted and expected. ASCII dialers often use this type of sequence to dial a 
phone number. 


As shown in the earlier examples, the fifth field in a Devices file entry is ei- 
ther an index into the Dialers file or a special dialer type (801, TLI, or TLIS). 
Here an attempt is made to match the fifth field in the Devices file with the 
first field of each Dialers file entry. In addition, each odd numbered Devices 
field (starting with the seventh position) is used as an index into the Dialers 
file. If the match succeeds, the Dialers entry is interpreted to perform the di- 
aler negotiations. 


Each entry in the Dialers file has the following format: 
dialer substitutions expect-send ... 


The dialer field matches the fifth and any additional odd numbered fields in 
the Devices file. The substitutions field is a translate string; for each pair of 
characters, the first character is mapped to the second character. This is typ- 
ically used to translate = and — into whatever the dialer requires for “wait for 
dialtone” and “pause.” 
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The remaining expect-send fields are character strings. Below are some char- 
acter strings distributed in the Dialers file. 


penril =W-P "" \d > s\p9\c )-W\p\r\ds\p9\c-) y\c : \E\TP > 9\c OK 
ventel =&-% "" \r\p\r\c $ <K\T%%\r>\c ONLINE! 

hayes =,-, "" \dAT\r\c OK\r \EATDT\T\r\c CONNECT 

rixon =&-% "" \d\r\r\c $ s9\c )-W\r\ds9\c-) s\c : \T\r\c $ 9\c LINE 
vadiac =K-K "" \005\p *-\005\p-*\005\p-* D\p BER? \E\T\e \r\c LINE 


develcon "" "" \pr\ps\c est:\007 \E\D\e \007 

micom "" "™ \s\c NAME? \D\r\c GO 

direct 

att2212c =t+-, wu Ar\e :--: atol2=y,T\T\r\c red 

att4000 =,-, "™ \033\r\r\c DEM: \033s0401\c \006 \033s0901\c \ 
\006 \033s1001\c \006 \033s1102\c \006 \033d0T\T\r\c \006 

att2224 =+-, nw NENG. s==8 TNINENG red 

nls ane "" NLPS:000:001:1\N\c 


Following are the meanings of some of the escape characters used in the Di- 
alers file: 


\p Pause (approximately ¥, to’ second) 


\d Delay (approximately 2 seconds) 


\D Phone number or token without Dialcodes translation 
\r Phone number or token with Dialcodes translation 

\K Insert a BREAK 

\E Enable echo checking (for slow devices) 


\e Disable echo checking 


\r Carriage return 
\c No newline or carriage return 
\n Send newline 


\nnn_ Send octal number 


Additional escape characters are listed under “Systems File,” later in this 
chapter. 
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The penril entry in the Dialers file is executed as follows. First, the phone 
number argument is translated, replacing any = with a W (wait for dialtone) 
and replacing any — with a P (pause). The handshake given by the remainder 
of the line works as follows: 


“an 


Wait for nothing. (In other words, proceed to the next item.) 


\d Delay for 2 seconds. 

> Wait for a >. 

s\p9\c Send ans, pause for’ second, send a 9, send no terminating new- 
line 

)-W\p\r\ds\p9\c-) 


Wait for a ). If it is not received, process the string between the - 
characters as follows. Send a W, pause, send a carriage-return, de- 
lay, send an s, pause, send a 9 without a newline, and then wait for 
the ). 


y\c Senday. 


i : Wait for a: 

\E\TP Enable echo checking. (From this point on, whenever a character 
is transmitted, it will wait for the character to be received before 
doing anything else.) Then send the phone number. The \T means 
take the phone number passed as an argument and apply the Dial- 
codes translation and the modem function translation specified in 
the second field of this entry. Then send a P. 


> Wait for a >. 

9\c Send a 9 without a newline. 

OK Wait for the string OK. 
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7.5.3 Systems File 


The Systems file (/usr/lib/uucp/ Systems) contains the information needed 
by the uucico daemon to establish a communication link to a remote comput- 
er. Each entry in the file represents a computer that can be called by your 
computer. In addition, the basic networking software can be configured to 
prevent any computer that does not appear in this file from logging in on your 
computer (refer to “Other Networking Files,” later in this chapter, for a de- 
scription of the remote.unknown file). More than one entry can be present for 
a particular computer. The additional entries represent alternative commu- 
nication paths that will be tried in sequential order. The management of this 
file is supported by the system administration menu subcommand sys- 
temmgmt. 


Using the Sysfiles file, you can define several files to be used as “Systems” 
files. See the description of the Sysfiles file for details. 


Each entry in the Systems file has the following format: 
System-Name Time Type Class Phone Login 
The fields contain this information: 


System-name 
This field contains the node name of the remote computer. 


Time This field is a string that indicates the day-of-week and time-of-day 
when the remote computer can be called. The Time field has this for- 
mat: 


daytimel;retry] 
The day portion can be a list containing some of the following items: 


Su Mo Tu We Th Fr Sa 
For individual days 
Wk For any week-day (Mo Tu We Th Fr) 
Any For any day 
Never For a passive arrangement with the remote computer. If 


the Time field is Never, your computer will never initiate 
a call to the remote computer. The call must be initiated 
by the remote computer. In other words, your computer 
is in a passive mode in respect to the remote computer. 


7-14 Operations Guide: sysadm 
1003-48607-00 


Type 


Class 


Basic Networking 


The time portion should be a range of times such as 0800-1230. If no 
time portion is specified, any time of day is assumed to be allowed for 
the call. A time range that spans 0000 is permitted. For example, 
0800-0600 means that calls can be made at any time except the peri- 
od between 6 AM and 8 AM. Here is an example: 


Wk 1700-0800, Sa,Su 


This example allows calls from 5:00 PM to 8:00 AM, Monday through 
Thursday, and any time Saturday and Sunday. 


An optional subfield, retry, is available to specify the minimum time 
(in minutes) before a retry following a failed attempt. The default 
wait is 60 minutes. The subfield separator is a semicolon (;). For ex- 
ample, Any;9 is interpreted as call any time, but if a failure occurs, 
wait at least 9 minutes before retrying. 


This field contains the device type that should be used to establish the 
communication link to the remote computer. The keyword in this 
field is matched against the first field of Devices file entries: 


Systems: eagle Any ACU,g D1200 3251 ogin: nuucp \ 
ssword: Oakgrass 


Devices: ACU ttyGA/GAAH - D1200 penril 


You can define the protocol used to contact the system by adding it to 
the Type field. The example above shows how to attach the protocol g 
to the device type ACU. 


This field indicates the transfer speed of the device used in establish- 
ing the communication link. It can contain a letter and speed (for ex- 
ample, C1200, D1200) to differentiate between classes of dialers. If 
the device can be used at any speed, the keyword Any can be used. 
This field must match the Class field in the associated Devices file en- 
try: 
Systems: eagle Any ACU D1200 NY3251 ogin: nuucp \ 
ssword: Oakgrass 


Devices: ACU ttyGA/GAAH - D1200 penril 


If information is not required for this field, use a hyphen (-) as a 
place holder for the field. 
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Phone This field provides the phone number (token) of the remote computer 


Login 
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for use by automatic dialers. The phone number is made up of an op- 
tional alphabetic abbreviation and a numeric part. If an abbreviation 
is used, it must be listed in the Dialcodes file. 


Systems: eagle Any ACU D1200 N¥3251 ogin: nuucp \ 
ssword: Oakgrass 


Dialcodes: NY 9=1212555 


In this string, an equals sign (=) tells the ACU to wait for a secondary 
dial tone before dialing the remaining digits. A dash (—) instructs the 
ACU to pause 4 seconds before dialing the next digit. 


If your computer is connected to a LAN switch, you can access other 
computers that are connected to that switch. The Systems file entries 
for these computers will not have a phone number in the Phone field. 
Instead, this field will contain the token that must be passed on to the 
switch so it will know which computer your system wants to contact. 
(This is usually just the system name.) The associated Devices file en- 
try should have a \D at the end of the entry to ensure that this field 
is not translated using the Dialcodes file. 


This field contains login information given as a series of fields and 
subfields. It has this format: 


expect send 


expect is the string your system receives. send is the string your sys- 
tem sends after receiving the expect string. 


The expect field is made up of subfields in this form: 
expect[-send-expect]... 


The send is sent if the prior expect is not read successfully and the ex- 
pect following the send is the next expected string. For example, lo- 
gin--login tells UUCP to expect login. If UUCP receives login, it 
will go on to the next field. If it does not receive login, it will send 
nothing followed by a new line, then look for login again. If no char- 
acters are initially expected from the remote computer, the charac- 
ters "" (null string) should be used in the first expect field. Note that 
all send fields will be sent followed by a newline unless the send 
string is terminated with a \c. 
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Here is an example of a Systems file entry that uses an expect-send 
string: 


owl Any ACU 1200 Chicago6013 "" \r ogin:-BREAK-ogin: \ 
uucpx word: xyzzy 


This example says send a carriage return and wait for ogin: (for 
Login:). Ifyou don’t get ogin:, senda BREAK. When you do re- 
ceive ogin:, send the login name uucpx. Then, when you receive 
word: (for password:), send the password xyzzy. 


There are several escape characters that cause specific actions when they are 
a part of a string sent during the login sequence. The following escape char- 
acters are useful in UUCP communications: 


\N Send or expect a null character (ASCII NUL). 

\b Send or expect a backspace character. 

\c If at the end of a string, suppress the newline that is normally sent. 
Ignored otherwise. 

\d Delay 2 seconds before sending or reading more characters. 

\p Pause for approximately ’, to second. 

\E Start echo checking. (From this point on, whenever a character is 
transmitted, it will wait for the character to be received before doing 
anything else.) 

\e Echo check off. 

\n Send a newline character. 

\r Send or expect a carriage-return. 

\s Send or expect a space character. 

Xe Send or expect a tab character. 

\\ Send or expect a \ character. 

EOt Send or expect EOT newline twice. 

BREAK Send or expect a break character. 

\K Same as BREAK. 

\ddd Collapse the octal digits (ddd) into a single character. 
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7.5.4 Dialcodes File 


The Dialcodes file (/usr /lib/uucp/Dialcodes) contains the dialcode abbrevia- 
tions that can be used in the Phone field of the Systems file. Each entry has 
this format: 


abb dial-seq 


abb is the abbreviation used in the Phone field of the Systems file; dial-seq is 
the dial sequence passed to the dialer when that particular Systems file entry 
is accessed. 


The following entry would work with a Phone field such as jt 7867 in the 
Systems file. 


jt 9=847- 


If the token in the dialer-token-pair is \T when the entry containing 
3jt7867 is encountered, the sequence 9=847-7867 is sent to the dialer. 


7.5.5 Permissions File 


The Permissions file (/usr/lib/uucp/Permissions) specifies the permissions 
that remote computers have with respect to login, file access, and command 
execution. There are options that restrict the remote computer’s ability to re- 
quest files and to receive files queued by the local site. Another option speci- 
fies the commands that a remote system can execute on the local computer. 


How Entries are Structured 


Each entry is a logical line; physical lines are terminated by a \ to indicate 
continuation. Entries are made up of options delimited by white space. Each 
option is a name/value pair in the following format: 


name=value 
Note that no white space is allowed within an option assignment. 


Comment lines begin with a pound sign (#) and they occupy the entire line up 
to a newline character. Blank lines are ignored (even within multiline en- 
tries). 


There are two types of Permissions file entries: 
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LOGNAME 
Specifies the permissions that take effect when a remote computer 
logs in on (calls) your computer. 


MACHINE 
Specifies permissions that take effect when your computer logs in on 
(calls) a remote computer. 


LOGNAME entries contain a LOGNAME option; MACHINE entries contain 
a MACHINE option. 


The following items should be considered when using the Permissions file to 
restrict the level of access granted to remote computers: 


¢ All login IDs used by remote computers to log into your system must ap- 
pear in one and only one LOGNAME entry. 


¢ Ifa site is called and its name does not appear in a MACHINE entry, it 
will have the following default permissions/restrictions: 


a. Local send and receive requests will be executed. 


b. The remote computer can send files to your computer's 
/usr/spool/uucppublic directory. 


c. The commands sent by the remote computer for execution on your 
computer must be one of the default commands (usually rmail). 


Permissions File Options 


This section describes the options available for LOGNAME and MACHINE 
entries, specifies how they are used, and lists their default values. 


REQUEST. When a remote computer calls your computer and asks to re- 
ceive a file, the request can be granted or denied. The REQUEST option 
specifies whether the remote computer can set up file transfers from your 
computer. The following string specifies that the remote computer can ask to 
transfer files from your computer. 


REQUEST=yes 


The following string specifies that the remote computer cannot ask to 
transfer files from your computer. 


REQUEST=no 
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This is the default value. It is used if the REQUEST option is not specified. 
The REQUEST option can appear in either a LOGNAME (remote machine 
calls you) entry or a MACHINE (you call remote machine) entry. A note on 
security: If a remote machine calls you and you don’t have a unique login and 
password for that machine, you can’t be sure that the machine is who it says 
it is. 


SENDFILES. When a remote computer calls your computer and completes 
its work, it might attempt to take work your computer has queued for it. The 
SENDFILES option specifies whether your computer can send the work 
queued for the remote computer. 


The following string specifies that your computer can send work queued for 
the remote computer as long as it logged in as one of the names specified in 
the LOGNAME option. 


SENDFILES=yes 


This string is mandatory if your computer is in a “passive mode” with respect 
to the remote computer. 


The next string specifies that files queued in your computer will be sent only 
when your computer calls the remote computer. 


SENDFILES=call 


The is the default value for the SENDFILE option. This option is significant 
only in LOGNAME entries, as MACHINE entries apply when calls are made 
to remote computers. If the option is used with a MACHINE entry, it will be 
ignored. 


READ and WRITE. These options specify the parts of the filesystem that 
uucico can read from or write to. The READ option is for requesting files, 
the WRITE option for depositing files. These options can be used with either 
MACHINE or LOGNAME entries. 


The value for these options is a list of pathnames separated by colons. One of 
the values must be the prefix of any full pathname of a file coming in or going 
out. 


The wucppublic directory is the default for both the READ and the WRITE 
options. 


READ=/usr/spool/uucppublic 
WRITE=/usr/spool/uucppublic 


The following strings specify permission to access any file that can be 
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accessed by a local user with “other” permissions. 
READ=/ WRITE=/ 


To grant permission to deposit files in /usr/news as well as in the public di- 
rectory, the following values would be used with the WRITE option: 


WRITE=/usxr/spool/uucppublic: /usr/news 


If the READ and WRITE options are used, all pathnames must be specified 
because the pathnames are not added to the default list. For example, if only 
the /usr/news pathname were specified in a WRITE option, permission to 
deposit files in the public directory would be denied. 


You should be careful when making directories accessible for reading and 
writing by remote systems. For example, you probably wouldn’t want remote 
computers to be able to write over your /etc/passwd file, so /ete shouldn’t be 
open to writes. 


NOREAD and NOWRITE. The NOREAD and NOWRITE options specify 
exceptions to the READ and WRITE options or defaults. The following 
strings permit reading any file except those in the /etc directory (and its sub- 
directories—remember, these are prefixes) and writing only to the default 
/usr/spool/uucppublic directory. 


READ=/ NOREAD=/etc WRITE=/usr/spool/uucppublic 


NOWRITE works in the same manner as the NOREAD option. NOREAD 
and NOWRITE can be used in both LOGNAME and MACHINE entries. 


CALLBACK. The CALLBACK option is used in LOGNAME entries to speci- 
fy that no transaction will take place until the calling system is called back. 
There are some good reasons to use CALLBACK. From a security stand- 
point, if you call back a machine you can be sure it is the machine it says it is. 
Also, if you are doing long data transmissions, you can choose the machine 
that will be billed for the longer call. 


The following string specifies that your computer must call the remote com- 
puter back before any file transfers will take place. 


CALLBACK=yes 
The default value for the COMMAND option is as follows: 
CALLBACK=no 


Operations Guide: sysadm 7-21 
1003-48607-00 


Basic Networking 


The CALLBACK option is rarely used. Note that if two sites set this option 
for each other, a conversation will never get started. 


COMMANDS. The COMMANDS option can be hazardous to the security of 
your system. Use it with extreme care. 


The COMMANDS option can be used in MACHINE entries to specify the 
commands that a remote computer can execute on your computer. Note that 
COMMANDS is not used in LOGNAME entries; COMMANDS in MACHINE 
entries define command permissions whether we call the remote system or it 
calls us. 


The following string indicates the default command that a remote computer 
can execute on your computer. 


COMMANDS=rmail 


If a command string is used in a MACHINE entry, the default commands are 
overridden. For example, the following entry overrides the COMMAND de- 
fault so that the computers owl, raven, hawk, and dove can now execute 
rmail, rnews, and Ip on your computer. 


MACHINE=owl: raven:hawk:dove \ 
COMMANDS=rmail: rnews:1lp 


You can also specify the full pathnames of commands: 
COMMANDS=rmail: /usr/lbin/rnews:/usr/local/lp 


In this example, the command rmail uses the default path. (The default 
paths for your computer are /bin, /usr/bin, and /usr/Ibin.) When the re- 
mote computer specifies rnews or /usr/lbin/rnews, /usr/lbin/rnews will be 
executed regardless of the default path. Likewise, /usr/local/p is the Ip 
command that will be executed. 


Including ALL in the list means that any command from the remote comput- 
er(s) specified in the entry will be executed. If you use this value, you give 
the remote computer full access to your computer. Be careful. This allows 
far more access than normal users have. 


The following string illustrates two points. 
COMMANDS=/usr/lbin/rnews:ALL: /usr/local/lp 


The ALL value can appear anywhere in the string, and the pathnames speci- 
fied for rnews and Ip will be used (instead of the default) if the requested 
command does not contain the full pathnames for rnews or Ip. 
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The VALIDATE option should be used with the COMMANDS option when- 
ever potentially dangerous commands like cat and uuep are specified with 
the COMMANDS option. Any command that reads or writes files is poten- 
tially dangerous to local security when executed by the UUCP remote execu- 
tion daemon (uuxqt). 


VALIDATE. The VALIDATE option is used in conjunction with the COM- 
MANDS option when specifying commands that are potentially dangerous to 
your computer’s security. It provides a degree of verification of the caller’s 
identity. The use of the VALIDATE option requires that privileged comput- 
ers have a unique login/password for UUCP transactions. An important as- 
pect of this validation is that the login/password associated with this entry be 
protected. If an outsider gets that information, that particular VALIDATE 
option can no longer be considered secure. (VALIDATE is merely an added 
level of security on top of the COMMANDS option. However, it is a more se- 
cure way to open command access than ALL.) 


Careful consideration should be given to providing a remote computer with a 
privileged login and password for UUCP transactions. Giving a remote com- 
puter a special login and password with file access and remote execution ca- 
pability is like giving anyone on that computer a normal login and password 
on your computer. Therefore, if you cannot trust someone on the remote 
computer, do not provide that computer with a privileged login and password. 


The following LOGNAME entry specifies that if a remote computer claiming 
to be eagle, owl, or hawk logs in on your computer, it must have used the lo- 
gin uucpfriend. 


LOGNAME=uucpfriend VALIDATE=eagle:owl:hawk 


As can be seen, if an outsider obtains the uucpfriend login/password, 
masquerading is trivial. 


But what does this have to do with the COMMANDS option, which only ap- 
pears in MACHINE entries? It links the MACHINE entry (and COMMANDS 
option) with a LOGNAME entry for a privileged login. This link is needed 
because the execution daemon is not running while the remote computer is 
logged in. In fact, it is an asynchronous process with no knowledge of what 
computer sent the execution request. Therefore, the real question is: How 
does your computer know where the execution files came from? 


Each remote computer has its own “spool” directory on your computer. These 
spool directories have write permission given only to the UUCP programs. 
The execution files from the remote computer.are put in its spool directory af- 
ter being transferred to your computer. When the uuxqt daemon runs, it 
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can use the spool directory name to find the MACHINE entry in the Permis- 
sions file and to obtain the COMMANDS list, or if the computer name does 
not appear in the Permissions file, the default list will be used. 


The following example shows the relationship between the MACHINE and 
LOGNAME entries: 


MACHINE=eagle:owl:hawk REQUEST=yes \ 
COMMANDS=rmail:/usr/lbin/rnews \ 
READ=/ WRITE=/ 


LOGNAME=uucpz VALIDATE=eagle:owl:hawk \ 
REQUEST=yes SENDFILES=yes \ 
READ=/ WRITE=/ 


The value in the COMMANDS option means that remote mail and 
/usr/lbin/rnews can be executed by remote users. 


In the first entry, you must make the assumption that when you want to call 
one of the computers listed, you are really calling either eagle, owl, or hawk. 
Therefore, any files put into one of the eagle, owl, or hawk spool directories is 
put there by one of those computers. If a remote computer logs in and says 
that it is one of these three computers, its execution files will also be put in 
the privileged spool directory. You therefore have to validate that the com- 
puter has the privileged login uucpz. 


MACHINE Entry for Other Systems 


You might want to specify different options for the computers that are not 
mentioned in specific MACHINE entries. This can occur when there are 
many computers calling in and the command set changes from time to time. 
In the MACHINE entry, the word “OTHER’ is used for the computer name. 


MACHINE=OTHER \ 
COMMANDS=rmail:rnews:/usr/lbin/Photo: /usr/lbin/xp 


All options available for the MACHINE entry can also be set for computers 
that are not mentioned in specific MACHINE entries. 
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Combining MACHINE and LOGNAME Entries 


When the common options are the same, you can combine MACHINE and 
LOGNAME entries into a single entry. For example, the following entries 
share the same REQUEST, READ, and WRITE options. 


MACHINE=eagle:owl:hawk REQUEST=yes \ 
READ=/ WRITE=/ 
LOGNAME=uucpz REQUEST=yes SENDFILES=yes \ 
READ=/ WRITE=/ 
These two entries can be merged as follows: 


MACHINE=eagle:owl:hawk REQUEST=yes \ 
LOGNAME=uucpz SENDFILES=yes \ 
READ=/ WRITE=/ 


7.5.6 Poll File 


The Poll file (/usr/lib/uucp/Poil) contains information for polling remote 
computers. Each entry in the Poll file contains the name of a remote comput- 
er to call, followed by a(Tab) (a space won’t work), and finally the hours the 
computer should be called. Entries in the Poll file have this form: 


sys-name hour ... 


For example, the following entry specifies that computer eagle should be 
polled every four hours. 


eagle 0 4 8 12 16 20 


The uudemon.poll script does not actually perform the poll. It merely sets 
up a polling work file (always named C.file) in the spool directory. This file 
will be seen by the scheduler, which is started by uudemon.hour. 
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7.5.7 Devconfig File 


The /usr/lib/uucp/Devconfig file is used when your computer communicates 
over a Streams-based transport provider that conforms to the AT&T Trans- 
port Interface (TI). 


Devconfig entries define the STREAMS modules that are used for a particu- 
lar TI device. Entries in the Deuconfig file have this format: 


service=x device=y push=z[:z ...] 


x can be cu, uucico, or both values separated by a colon. y is the name of a 
TI network and must match an entry in the Devices file. z is replaced by the 
names of STREAMS modules in the order that they are to be pushed onto the 
stream. Different modules and devices can be defined for cu and uucp ser- 
vices. 


Following are some sample Deuconfig entries: 


service=cu device=STARLAN push=ntty:tirdwr:1d0 
service=uucico device=STARLAN push=ntty:tirdwr:1d0 


This example pushes ntty, then tirdwr, then 1d0. The Devconfig file cannot 
be modified with the system administration menus command sysadm. If you 
want to change the contents of this file, you must use a text editor. 


7.5.8 Sysfiles File 


The /usr/lib/uucp/Sysfiles file lets you assign different files to be used by 
uucp and cu as Systems, Devices, and Dialers files. Here are some cases in 
which this optional file might be useful. 


¢ You might want different Systems files so that requests for login ser- 
vices can be made to different addresses than requests for uucp ser- 
vices, 


¢ You might want different Dialers files to use different handshaking for 
cu and uucp. 


¢ You might want to have multiple Systems, Dialers, and Devices files. 
The Systems file in particular may become large, making it more conve- 
nient to split it into several smaller files. 


The Sysfiles file has this format: 


service=w systems=x:x dialers=y:y devices=z:z 
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w is replaced by uucico, cu, or by both values separated by acolon. <x is 
one or more files that are to be used as the Systems file; the filenames must 
be separated by colons and are read in the order presented. y is one or more 
files to be used as the Dialers file. z is one or more files to be used as the De- 
vices file. Unless a full path is given, each file is assumed to be relative to the 
/usr /lib/uucp directory. A backslash-carriage return (\ (Retum)) can be used 
to continue an entry onto the next line. 


Here’s an example of using a local Systems file in addition to the usual Sys- 
tems file: 


service=uucico:cu systems=Systems: Local_Systems 


If this line is in /usr/lib/uucp/Sysfiles, then both uucico and cu will first 
look in /usr/lib/uucp/Systems. If the system they are trying to call doesn’t 
have an entry in that file or the entries in the file fail, they will look in 
/usr/lib/uucp/Local_Systems. 


When different Systems files are defined for uucico and cu services, your 
machine will store two different lists of systems. You can print the uucico 
list by issuing the uuname command. To print the cu list, use the uuname 
-c command. 


7.5.9 Other Networking Files 


There are three other files that impact the use of basic networking facilities. 
In most cases, the default values are fine and no changes are needed. If you 
want to change them, however, use an editor such as ed or vi. 


Maxuuxqts 
This file defines the maximum number of uuxqt programs that can 
run at one time. 


Maxuuscheds 
This file defines the maximum number of uusched programs that 
can run at one time. 


remote.unknown 
This file is a shell script that executes when a machine that is not in 
any of the Systems files starts a conversation. It will log the conver- 
sation attempt and fail to make a connection. If you change the per- 
missions on this file so that it cannot execute (by issuing the com- 
mand chmod 000 remote.unknown), your system will accept any 
conversation requests. 
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7.6 Administrative Files 


The basic networking administrative files are described below. These files 
are created in spool directories to lock devices, hold temporary data, or keep 
information about remote transfers or executions. 


TM (temporary data file) 


These data files are created under the spool directory (that is, 

/usr/ spool /uucp/X) when a file is received from another computer. 
The directory X has the same name as the remote computer sending 
the file. The names of the temporary data files have this format: 


TM. pid.ddd 


pid is a process-ID and ddd is a sequential three digit number start- 
ing at 0. 


When the entire file is received, the TM.pid.ddd file is moved to the 
pathname specified in the work file that caused the transmission. If 
processing terminates abnormally, the TM.pid.ddd file might remain 
in the X directory. These files should be automatically removed by 
uucleanup. 


LCK (lock file) 


Lock files are created in the /usr/spool/locks directory for each de- 
vice in use. Lock files prevent duplicate conversations and multiple 
attempts to use the same calling device. The names of lock files have 
this format: 


LCK..str 


str is either a device or computer name. These files can remain in the 
spool directory if the communications link is unexpectedly dropped 
(usually on computer crashes). The lock files will be ignored (re- 
moved) after the parent process is no longer active. The lock file con- 
tains the process ID of the process that created the lock. 


C. (work file) 
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Work files are created in a spool directory when work (file transfers 
or remote command executions) has been queued for a remote com- 
puter. The names of work files have this format: 


C.sysnxxxx 


sys is the name of the remote computer, n is the ASCII character rep- 
resenting the grade (priority) of the work, and xxxx is the four-digit 
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job sequence number assigned by UUCP. Work files contain the fol- 
lowing information: 


¢ Full pathname of the file to be sent or requested 

¢ Full pathname of the destination or “user/file name 
¢ User login name 

¢ List of options 


¢ Name of associated data file in the spool directory (if the uucp 
-c or uuto -p option was specified, a dummy name (D.0) is 
used) 


© Mode bits of the source file 


¢ Login name of remote user to be notified upon completion of the 
transfer 


D. (Data file) 


Data files are created when the command line specifies that the 
source file is to be copied to the spool directory. The names of data 
files have the following format: 


D.systmxxxxyyy 


systm is the first five characters in the name of the remote computer 
and xxxx is a four-digit job sequence number assigned by uucp. The 
job sequence number can be followed by a subsequence number, yyy, 
that is used when there are several D. files created for a work (C.) 
file. a 


X. (Execute file) 


Execute files are created in the spool directory prior to remote com- 
mand executions. The names of execute files have the following for- 
mat: 


X.SYSNXXLX 


sys is the name of the remote computer, n is the character represent- 
ing the grade (priority) of the work, and xxxx is a four-digit sequence 
number assigned by UUCP. Execute files contain the following infor- 
mation: 


¢ Requester’s login and computer name 
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e Name of file(s) required for execution 
¢ Input to be used as the standard input to the command string 


¢ Computer and filename to receive standard output from the 
command execution 


¢ Command string 


¢ Option lines for return status requests 


7.7 Direct Links 
Direct links are beneficial in these situations: 


¢ Itis not possible to link the computers together through a Local Area 
Network (LAN). 


¢ Two computers transfer large amounts of data on a regular basis. 


¢ Two computers are located no more than several hundred feet apart. ® 


The distance between two directly linked computers is dependent on the envi- 
ronment in which the cable is run. The standard for RS-232 connections is 50 
feet or less with transmission rates as high as 19200 bits per second (bps). As 
the cable length is increased, noise on the lines may become a problem, which 
means that the transmission rate must be decreased or limited-distance 
modems must be placed on each end of the line. 


Do not use more than 1000 feet of cable to connect the two computers or com- 
munications will be unreliable. This link should operate comfortably at 9600 
bps in a clean (noise free) environment. 


Ideally, systems that have a direct link should be running the same release of 
the operating system to have the full set of capabilities available. However, 
lack of a common version of the operating system will not prevent you from 
using the basic networking utilities. 


The following support files must be updated to reflect the presence of a direct 
link: 


© /usr/lib/uucp/ Devices 
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° /ete/inittab 
e /usr/lib/uucp/ Systems 


All necessary additions/modifications to these three files can be accomplished 
by using the system administration menu subcommand uucpmgmt. 


Creating Devices File Entries 


The Devices file contains the information concerning the location (line) and 
transmission rate of the link. Entries can be added to the Devices file by us- 
ing the system administration menu subcommand uucpmgmt devicemgmt 
and then selecting the add operation. You will be prompted for the following 
information: 


¢ Port name (for /dev/ttyGA/GAAH use ttyGA/GAAH) 
¢ Device type to call on (direct) 
¢ Speed at which you want to call (9600 or 19200). 


Making Changes to the /etc/inittab File 


There are two versions of the basic networking utilities. The differences be- 
tween them are reflected in the /etc/inittab file. The newest version allows 
for bidirectional login capability by respawning uugetty instead of getty. 
This means that if two computers (both using uugetty) were connected via a 
direct link, either of these computers could request communication with the 
other. This would not be true if only one computer was capable of respawn- 
ing uugetty. 


If the direct link is connecting your computer with a computer that has the 
new version of basic networking, the /etc/inittab files on both computers 
should be set up to allow “bidirectional” traffic on the associated lines. This 
means that the lines used must respawn uugetty on each end of the link. 
This would allow either computer to call the other computer. 


If the direct link is connecting your computer with a computer that does not 
have the new version of basic networking, the /etc/inittab file would be set 
up differently on each system. The /etc/inittab file on each computer would 
be set up to allow either “incoming” or “outgoing” traffic on its line. If one 
computer allows incoming traffic, the other must allow only outgoing traffic. 
A uugetty could not be used on either computer in this case. 
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Acomputer’s /etc/inittab entry would be respawning getty for incoming 
traffic, or have “respawn” turned off for outgoing traffic. In order for this 
type of link to work, one of the computers must be set up to poll the other. If 
the remote computer is allowing only incoming traffic, you must set up your 
computer to poll the remote computer. (You can use the system administra- 
tion menu subcommand uucpmgmt pollmgmt to do this). If the remote 
computer is allowing only outgoing traffic on the link, it must be set up to poll 
your computer. 


Entries in the /etc/inittab file can be changed by using the system adminis- 
tration menu subcommand uucpmgmt portmgmt and then selecting the 
modify operation. The modify operation will prompt you for the following 
information: 


¢ Port name you want to modify (for /dev/ttyGA/GAAH, use 
ttyGA/GAAH) 


¢ Direction of traffic on port (bidirectional, incoming, or outgoing) 

¢ Transmission speed of the link (9600 or 19200) 
The modify procedure lists the ports that are currently dedicated for use by 
UUCP (included in Devices file). The port name to be modified must appear 
on this list. 
Making Systems File Entries 


An entry must be made in the Systems file for the computer associated with 
the direct link. This can be done by using the system administration menu 
subcommand systemmgmt and then selecting the add operation. The add 
operation will prompt you for the following information: 


¢ Node name of system 

° Type of device to call on (direct) 

¢ Transmission speed of link (9600 or 19200) 

¢ Device port used with link (for /dev/ttyGA/GAAH use ttyGA/GAAH) 


¢ Login ID used to login on system (nuuep or some other login you set 
up) 


¢ Password used by above login 
To prevent possible problems when logging on at high speeds, you can insert 


pauses (\p) between the characters being sent out for the login ID and the 
password. For example, instead of nuucp, you should enter 
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n\pu\pu\pce\p\pp when prompted for the login ID. Do not select the de- 
fault by pressing(Retum). The same applies for the password assigned. 


Upon completion of the add operation, a new entry for the remote computer 
is added to the Systems file. You must also make an additional entry in the 
Devices file. When you use devicemgmt to create an entry for the link, it 
creates an entry similar to the one shown below. 


Direct ttyGA/GAAH - 9600 direct 
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This appendix describes directories and files of interest to a system adminis- 
trator. 


A.1 Directories 


The root filesystem contains these directories: 


bin Contains public commands. 

dev Contains special files that define all of the devices on the sys- 
tem. 

etc Contains administrative programs and tables. 

lib Contains public directories. 


lost+found Used by fsck to save disconnected files. 


mnt Used to mount filesystems temporarily. 
save Used by the menu system for saving data. 
tmp Used for temporary files. 

usr Used to mount the /usr filesystem. 

A.2 Files 


The following directories and files are important in the administration of 
your computer. 


/etce/checklist 


The /etc/checklist file is used to define a default list of filesystem devices to 
be checked for consistency by /ete/fsck and /etc/ncheck. The character 
(raw) device partition for the filesystem should be identified. The devices list- 
ed normally correspond to those mounted when the system is in multiuser 
mode (run level 2), The root filesystem should not be listed in this file. Re- 
member that, with the exception of root, a filesystem must be unmounted to 
be checked. Therefore, the checklist file is a convenience for use when in the 
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single-user mode of operation with only the root filesystem mounted. When 
the system is delivered, this file is empty. (See checklist(4) for additional in- 
formation.) 


/ete/fstab 


The /etc/fstab file is used as an argument to the /etc/mountall command. 
The fstab file specifies the filesystems to be mounted by /etc/mountall. The 
format of the file is the block device name followed by the mountpoint name. 
(See mountall(1M) for additional information.) 


/etce/gettydefs 


The /etc/gettydefs file contains information that is used by /ete/getty to set 
the speed and terminal settings for a line. The getty command uses a label 
to access the gettydefs file. 


/ete/group 


The /etc/group file describes each group to the system. An entry is added for 
each new group. Each line in the file consists of four fields separated by co- 
lons: 


group name.password.group id:login names 


Explanations for these fields are as follows: 


group name 
The first field defines the group name, which can be from 3 to 6 charac- 
ters long. The first character is alphabetic; the remaining characters 
are alphanumeric. You must use lowercase letters. 


password 
The second field contains the encrypted group password. This password 
contains 13 bytes (characters), but the actual password is limited to a 
maximum of 8 bytes. The encrypted password can be followed by a 
comma and up to 4 more bytes of password aging information. The use 
of group passwords is discouraged. 


group id 
The third field contains the group identification number, which must be 
between 0 and 60000. Group identification numbers 0 through 99 are 
reserved; 0 indicates the superuser (root). Commas are not entered in 
this field. 
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login names 
The fourth field contains a list of all login names in the group. The 
names in the list are separated by commas. These users can issue the 
/etec/newgrp command to become a member of the group. 


/etclinit.d Directory 


The /etc/init.d directory contains executable files used in upward and down- 
ward transitions to all system run levels. These files are linked to files begin- 
ning with S (start) or K (stop) in /etc/ren.d, where n is the appropriate run 
level. Files are not executed from this directory. They are executed only 
from /etc/rcn.d directories. 


letclinittab 


The /etc/inittab file contains instructions for the /etc/init command. The in- 
structions define the processes that are to be created or terminated for each 
initialization state (also called a run level). 


By convention, run levels 1, S, and s are single-user mode; run level 2 is mul- 
tiuser mode. Chapter 3, “Processor Operations,” summarizes the various run 
levels and describes their uses. (See inittab(4) for additional information.) 
An /etc/inittab entry contains a series of fields separated by colons. 


identification:run-state:action:process 


Explanations for these fields are as follows: 


identification The identification field is an identifier for the line entry. It 
can be from 1 to 4 characters long. 


run-state The run-state defines the run level in which the entry is to be 
processed. 

action The action field defines how /etc/init treats the process field. 
(Refer to inittab(4) for complete information.) 

process The process field defines the shell command that is to be exe- 
cuted. 
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letc/motd 


The /etc/motd file contains the message-of-the-day. This message is output 
by the /etc/profile file after a user logs in successfully. This message should 
be short and to the point. The /usr/news files should be used for longer mes- 
sages. 


/etc/passwd 


The /etc/passwd file identifies each user to the system. An entry is added 
for each new user. Each line in the file consists of seven fields separated by 
colons. 


login name:passwd:user.group:account:login directory:program 


Explanations for these fields are as follows: 


login name 
The first field defines the login name, which can be up to 8 characters 
long. The first character is alphabetic; the remaining characters are al- 
phanumeric. You cannot use uppercase characters. 


passwd 
The second field contains the encrypted password, which consists of 13 
bytes (characters), The actual password is limited to a maximum of 8 
bytes. The encrypted password can be followed by a comma and up to 4 
more bytes of password aging information. If your site is using the 
/etc/shadow file, the password information is stored in that file and 
this field contains an x. 


user id 
The third field contains the user identification number, which must be 
between 0 and 60000. Group identification numbers 0 through 99 are 
reserved; 0 indicates the superuser (root). 


group id 
The fourth field contains the group identification number, which must 
be between 0 and 60000. Group identification numbers 0 through 99 
are reserved; 0 indicates the superuser (root). 


account 
The fifth field is for miscellaneous information such as the user’s name 
and phone number. 
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login directory 
The sixth field defines the full pathname of the login directory. 


program 
The seventh field defines the program to be executed after login. If it is 
null, the Bourne shell (/bin/sh) is invoked. 


/etc/profile 


The /etc/profile file contains the default profile for all Bourne and Korn shell 
users. This profile establishes the standard (default) environment for these 
users. The system administrator can modify this file to set options for the 
root login. 


lete/rcO 


The /etc/rc0 file contains a shell script that is executed by /ete/shutdown 
for transitions to single-user state. It is also executed by /etc/init for transi- 
tions to run levels 0, 5, and 6. Files in the /etc/shutdown.d and /etc/rc0.d 
directories are executed when /ete/rc0 is run. The file KOOANNOUNCE in 
/etc/rc0.d prints the message System services are now being 
stopped, If you want a task to execute when the system is taken to run lev- 
els 0, s, 5, or 6, add a file to the /etc/shutdown.d directory. 


/etc/rc0.d Directory 


The /ete/rc0.d directory contains files executed by /ete/rc0 for transitions to 
system run levels 0, 5, and 6. Files in this directory are linked from the 
/etc/init.d directory and begin with either a K or an S. K indicates processes 
that are stopped when entering run levels 0, 5, or 6; S indicates processes 
that are started. 


lete/rc2 


The /etc/rc2 file contains a shell script that is executed by /etc/init on tran- 
sitions to run level 2 (multiuser state). Executable files in /etc/rc.d and any 
executable files beginning with S or K in the /etc/rc2.d directories are exe- 
cuted when /ete/re2 is run. All files in re2.d are linked from files in the 
/etc/init.d directory. The following are descriptions of some of those files. 
These files are prefixed with an S or a K and a number in the /etc/rc2.d di- 
rectory. 
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MOUNTFILESYS 
Sets up and mounts filesystems. Builds the mount table and mounts 
the root (/ and user (/usr) filesystems. Makes the /usr/tmp directory 
and cleans up (deletes) any previous files in that directory. 


cron 
Starts the cron daemon by executing /etc/cron. 


sysetup 
Removes the /etc/ps_data file to force the /bin/ps command to read the 
/unix file. Outputs the system configuration if the /etc/prtconf com- 
mand exists. Outputs the system trademark information. 


uucp 
When basic networking is added to the system, the wucp file is added to 
this directory. The wucp file deletes uucp locks (LCK*), status files 
(STST*), and temporary files (TM*) under the /usr/spool/uucp direc- 
tory structure. 


lp When line printer spooling is added to the system, the lp file is added to 
the rc.d directory. The lp file removes the spooler lock file and starts 
the scheduler. 


Other files can also be added to the /etc/rc2.d and /etc/rc.d directories as a 
function of adding hardware or software to the system. 


/etc/rc2.d Directory 


The /etc/rc2.d directory contains files executed by /ete/re2 for transitions to 
system run level 2. Files in this directory are linked from the /etc/init.d di- 
rectory, and begin with either a K or an S. K indicates processes that should 
be stopped, and S indicates processes that should be started. 


/etc/re.d Directory 


The /etc/rc.d directory contains executable files that perform functions need- 
ed to initialize the system to run level 2. The files are executed when 
/ete/re2 is run. This directory is maintained only for compatibility reasons. 


/etc/save.d Directory 


The /etc/save.d directory contains files that are used by the System Adminis- 
tration Menu commands associated with backing up data. The following files 
are included: 


A-6 Operations Guide: sysadm 
1003-48607-00 


Directories and Files 


except A list of the directories and files that should not be copied as part 
of a backup (savefiles) is maintained in this file. 


timestamp/... 


The date and time of the last backup (full or incremental) is main- 
tained for each filesystem in the /etc/timestamp directory. 


letc/shadow 


The /etc/shadow file contains encrypted passwords and aging information for 
each user on the system. Only the user root can read this file. 


lete/shutdown 


The /etc/shutdown file contains a shell script to shut down the system grace- 
fully in preparation for system backup or scheduled downtime. After stop- 
ping all nonessential processes, the shutdown script executes files in the 
/etc/shutdown.d directory by calling /ete/rcO for transitions to run level s or 
S. For transitions to other run levels, the shutdown script calls /etc/init. 


letc/shutdown.d Directory 
The executable files in /etc/shutdown.d perform the various functions re- 


quired during the transition to the single-user state (run levels 1, s, or S). 
This directory is maintained only for compatibility reasons. 


letc/TIMEZONE 


The /etc/TIMEZONE file sets the time zone environment variable TZ. This 
variable is set initially through the System Administration setup function. 
The TZ variable in the TIMEZONE file is changed by the System Administra- 
tion timezone command (sysadm timezone). The TZ variable can be rede- 
fined on a user (login) basis by setting the variable in the associated .profile. 
The TIMEZONE file is executed by /ete/re2. The format of TZ is as follows: 


TZ2=TTT#SSS 


Explanations for the fields are as follows: 


TIT The three-character abbreviation for the local time zone. 


# The number of hours that the local time zone differs from 
Greenwich Mean Time (GMT). This field can be entered as a posi- 
tive or negative number. 
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SSS The three-character abbreviation for the local daylight savings 
time zone. This field is entered only if daylight savings time is ob- 
served. 

letclutmp 


The /etc/utmp file contains information on the run-state of the system. This 
information is accessed by the who -a command. 


letchwtmp 


The /etc/wtmp file contains a history of system logins. The owner and group 
for this file must be adm; the access permissions must be 664. Because this 
file is updated whenever login is run, it increases in size. Periodically, you 
should clear or truncate this file. The command line >/etc/wtmp, when exe- 
cuted by root, creates the file with nothing in it.. The following command line 
limits the size of the /etc/wtmp file to the last 3600 characters in the file: 


tail -3600c /etc/wtmp > /tmp/wtmp; mv /tmp/wtmp /etc/wtmp 


Note that /ete/cron, /etc/rc0, or /ete/re2 can be used to clean up the wtmp 
file. To use one of these functions, add the appropriate command line to the 
/usr/spool/cron/crontab/root, /etc/shutdown.d/..., or /etc /re.d/, rc2.d 
file. 


/usr/adm/sulog 


The /usr/adm/sulog file contains a history of substitute user (su) command 
usage. As a security measure, this file should not be readable by others. The 
/usr/adm/sulog file should be truncated periodically to keep the size of the 
file within a reasonable limit. Note that /ete/cron, /ete/rc0, or /ete/re2 can 
be used to clean up the sulog file. To use one of these functions, add the ap- 
propriate command line to the /usr/spool/cron/crontab/root , /ete/shut- 
down.d/..., or the /etc/rc.d/, rc2.d file. The following command lines limit 
the size of the log file to the last 100 lines in the file: 


tail -100/usr/adm/sulog > /tmp/sulog 
mv /tmp/sulog /usr/adm/sulog 
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/usrflib/cronilog 


A history of all actions taken by /ete/cron is recorded in the 

/usr /lib/cron/log file. You should truncate this file periodically to keep it 
within a reasonable size. Note that /ete/cron, /etc/rc0, or /ete/re2 can be 
used to clean up the /usr/lib/cron/log file. To use one of these functions to 
limit the size of the file, add the appropriate command line to the 
/usr/spool/cron/crontab/root, /etc/shutdown.d/... , or /etc/re.d/ rc2.d file, 
as applicable. The following command line limits the size of the log file to the 
last 100 lines in the file: 


tail -100/usr/lib/cron/log > /tmp/log; mv /tmp/log /usr/lib/cron/log 


/usr/lib/help/HELPLOG 


A history of all actions taken by the /usr/bin/help command is kept in the 
/usr /lib/help/HELPLOG file. This file is copied to /usr/lib/ help /oHELP- 
LOG and a new /usr/lib/help/HELPLOG file is created by the 
/usr/lib/help/helpclean command. Executing the helpclean command 
twice in succession zeros out the HELPLOG and the oHELPLOG files. Note 
that /etc/cron, /ete/rc0, or /ete/re2 can be used to clean up the HELPLOG 
file. To use one of these functions, add the appropriate command line to the 
/usr/spool/cron/crontab/root, /etc/shutdown.d/.. ., or /etc/re.d/ rc2.d file, 
as applicable. The following command lines limit the size of the log file to the 
last 100 lines in the file: 


tail -100/usr/lib/help/HELPLOG > /tmp/help 
mv /tmp/help /usr/lib/help/HELPLOG 


/usrflib/spell/spellhist 


A history of all words that spell(1) fails to match is kept in the 
/usr/lib/spell/spelthist file. Periodically, this file should be reviewed for 
words that should be added to the dictionary. After the spellhist file is re- 
viewed, it can be cleared. 


/usr/news 


The /usr/news directory contains news files. The filenames are descriptive 
of the contents of the files; they are analogous to headlines. When a user 
uses the news command to read news items, an empty file named .news_time 
is created in his or her login directory. The date (time) of this file is used by 
the news command to determine if a user has read the latest news files. 
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/usr/spool/cron/crontabs 


The /usr/spool/cron/crontabs directory contains crontab files for the adm, 
root, and sys logins. Providing their lognames are in the 
/usr/lib/cron/cron.allow file, users can establish their own crontabs file us- 
ing the crontab command. If the cron.allow file does not exist, the 
/usr/lib/cron/cron.deny file is checked to determine if the user is denied the 
use of the crontab command. 


As root, you can use the crontab(1) command or edit the appropriate file 
under /usr/spool/cron/crontabs to make the desired entries. Revisions to 
the file take effect at the next reboot. An entry in /usr/spool/cron/cron- 
tabs/logname has this format: 


minute hour day month day-of-week command 


The fields have these meanings: 


minute The minutes field is a one- or two-digit number in the range 0 
through 59. 

hour The hour field is a one- or two-digit number in the range 0 
through 24. 

day The day field is the numerical day of the month in the range 1 
through 31. 

month The month field is the numerical month of the year in the 


range 1 through 12. 


day-of-week The day-of-week field is the numerical day of the week where 
Sunday is 0, Monday is 1, and Saturday is 6. 


command The command field is the program or command that is execut- 
ed at the time specified by the first five fields. 


A-10 Operations Guide: sysadm 
1003-48607-00 


Directories and Files 


The following syntax applies to the first five fields: 


* Two numbers separated by a hyphen indicates an inclusive range of 
numbers between the two specified numbers. 


¢ A list of numbers separated by commas specifies all of the numbers list- 
ed. 


¢ An asterisk specifies all legal values. 


In the command field (sixth field), a percent sign (%) is translated to a new- 
line character. Only the first line of a command field (character string up to 
the percent sign) is executed by the shell. Any other lines are made available 
to the command as standard input. 
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Archive. See Backup. 


Automatic call unit (ACU). A hardware device that can dial telephone 
numbers; it is usually built into a modem. The UUCP system uses automatic 
call units to call a remote system over telephone lines. 


Backup. To make a copy of a file, directory, or filesystem. If you back up a 


directory or filesystem, the backup procedure preserves the directory struc- 
ture. : 


Bit rate. The speed (in bits-per-second) at which data is transmitted over a 
TTY line (port). 


Block. A unit to measure (in bytes) the data transfer size. A block must be 
a multiple of the sector size. A filesystem block typically contains either 4096 
or 8192 bytes. 


Block device. A device that handles data in blocks. When the operating 
system needs to read or write data from a block device, it transfers blocks of 
data (in 2 Kbyte units) into or from a buffer. Disk drives are block devices. 


Boot. To start up the operating system. 


Boot block. The first 8K block on a disk. This block can contain programs 
for booting the operating system. Each filesystem also contains a boot block. 


Character device. A device that handles data one character at a time, as a 
stream of bytes. Terminals, printers, and modems are character devices. 


Class. A set of printers having common attributes. When a user sends a 


print request to a class, the first available printer in that class prints the re- 
quest. 


Console. A terminal connected directly to the computer. It is used for com- 
munications between the operator and the computer. 


Operations Guide: sysadm G-1 
1003-48607-00 


Glossary 


Cylinder. A set of tracks on a disk. The read/write head can access all 
tracks within a cylinder without moving. 


Cylinder group. Several contiguous cylinders on a disk. The filesystem 
spreads files and directories throughout its cylinder groups and attempts to 
store data for a file within a single cylinder group. 


Daemon. A routine that runs as a background process and performs a sys- 
tem-wide function. Daemons are typically scheduled by the cron program. 


Default value. Data that appears in a field when you make a menu selec- 
tion. 


Device. Disk drives, tape drives, cartridge drives, printers, modems, and so 
on. 


Device driver. A special-purpose program used to control a specific set of 
devices. Device drivers are typically part of the operating system. 


Device special files. Files in the /dev directory that represent devices. De- 


vice special files are the operating system interface to the appropriate device 
drivers. 


Dial code. Abbreviations that represent a portion of a telephone number 
(used by UUCP). 


Direct link. Hardware that allows computers located near each other to 
communicate. Cables are run between the serial ports of the computers, ena- 
bling UUCP conversations to occur. 


Disk sector. A unit to measure the storage capacity of a disk. A disk sector 
contains 512 bytes, which is the smallest indivisible transfer size for disks. 


Filesystem. A hierarchical collection of files and directories that begins with 
a root directory. The root filesystem is the source of the operating system. 


Filesystem label. A label that identifies a filesystem. It has two parts: an 
fsname that corresponds to the directory mountpoint and a volume, which is 
a secondary identifier. 
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Firmware mode. A run level in which all filesystems are unmounted, the 
operating system is not running, and only the firmware monitor is active. 
This run level is used to run standalone programs such as diagnostics. It is 
also the only run level where it is safe to remove power from the system. 


Firmware monitor. A part of the system that runs tests, initializes devices, 
and carries out other procedures necessary to bring up the operating system. 


Format. Creating an addressing scheme on a disk. 
Fragment. A portion of a file block. 
Free blocks. Blocks in a filesystem that are not being used by a file. 


Full backup. A backup that copies an entire filesystem or the complete con- 
tents of specific directories. 


getty. A process that waits at a TTY port for a user to login. It determines 
the appropriate line setting for the port, including the communication speed 
and the login prompt, and then starts up the login process. 


Group. A set of users having access to a common set of files. Groups are de- 
fined in the /etc/group file, which includes the name of the group, the group 
ID, and the names of the people belonging to the group. 


Hunt sequence. A series of line settings that enable the system to try dif- 
ferent communication rates when a user logs in. The user presses (Break) to 
cycle through the line settings. 


Incremental backup. A backup that copies only new files and those files 
that have been changed since the last full backup. 


Indirect blocks. Data blocks that are not referenced directly by an inode. 
These data blocks contain portions of a large file. 


init. A process invoked during the boot procedure. It reads the /etc/inittab 
file to determine the processes to be started up at each run level. 


Inode. The part of a filesystem that stores information about a particular 
file or directory. The information includes the owner, group, permissions, file 
size, links, the time the file was last accessed or modified, and the location of 
disk blocks storing data in the file. 
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Interface program. A program that prepares a print request for printing 
on a specific printer. 


Line setting. A set of line characteristics, such as the communication speed, 
that adjust a TTY line. These characteristics allow the computer to commu- 
nicate with a specific peripheral device. 


LP scheduler. A program that controls the LP print service. It picks up 
print requests and sends them to the appropriate printer queue. 


Master system. A system that initiates a UUCP conversation. 


Menu. A box on the screen that lists a group of related submenus or options. 
These options correspond to operating system procedures. 


Mount. To make a filesystem accessible to users. 


Multiuser mode. An operating system mode that allows all users access to 
the system. 


Node name. The official name of a machine in a network. This name is 
usually the same as the system name. 


Partition. A portion of a disk. A partition can contain a filesystem, swap 
space, a raw database, or other types of information. 


Password aging. A security feature that allows you to specify when a pass- 
word must be changed. 


Port. The physical equipment through which interaction between the com- 
puter and peripheral devices takes place. 


Prompt. The questions that appear when you select a menu system subcom- 
mand. The prompts tell you what the system needs to know to run a subcom- 
mand. 


Public directory. Any directory that allows read/write permission for all 
users. Typically, files transferred by UUCP are placed in a public directory 
(the default is /usr/spool/uucppublic). 
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Raw device. A block device that handles data as a character device (as a 
stream of bytes, rather than a block). Programs such as fsck and volcopy 
access disk and tape drives as raw devices. 


Reboot. To halt the system, then start it up again. This procedure initial- 
izes the state of the operating system. 


Respawn. To continuously restart a process after it has exited. This meth- 
od is used to make TTY lines available for logins after users have logged out. 


Restore. The process of recovering files, directories, or filesystems from a 
backup medium. 


Run level. Operating system states (the most commonly-used states are 
single-user mode and multiuser mode). 


Root filesystem. The first filesystem in the operating system. It begins 
with a directory called root (indicated by a/) and contains several system 
directories as well as the operating system kernel. 


Single-user mode. An operating system mode that allows only the su- 
peruser to access the system from the console. 


Slave system. A system that receives a UUCP call. 
Slice. See Partition. 


Spawn. To create a process. For example, at boot time, the init process 
spawns a getty process for each TTY port that can accept logins. 


Submenu. A menu that appears as an option on another menu. 


Superblock. The part of a filesystem that stores information about the 
filesystem, including its name, the number of data blocks it contains, and the 
maximum number of files it can contain. The superblock is created when the 
filesystem is created. 


Superuser. A privileged user who uses the root login. This login owns 
many system files and has access to all parts of the system. 


System default destination. A printer or class that receives print requests 
not directed to a specific printer. 


Operations Guide: sysadm G-5 
1003-48607-00 


Glossary 


System name. A name for the system. This name is usually the same as 
the Node name. 


Track. A portion of a disk platter that contains data. 

TTY line. See Port. 

Unmount. To make a filesystem inaccessible to users. 

User account. An entry in the /etc/passwd file that defines a user’s login 
name, user ID, home directory, and shell program. The user’s password, 
which is stored in the /etc/shadow file, is also part of a user account. 
uugetty. A program similar to getty that allows a TTY line to be used for 
both logins and outgoing calls. This program allows modems to accept incom- 


ing calls and to make outgoing calls from the same physical port. 


VTOC (volume table of contents). The part of a disk that contains a list- 
ing of the partitions on the disk, their sizes, and their starting points. 
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data files .... wee 7-29 
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Devices file ......ccesscssscccesscsssssecscecscesccsscsseacescsccscconserscsscsscessesessacssarenceees P7-3 
direct links .... we 7-30 
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MORUUSCHEASUNG: io:s3sssvcesecocscesesanssuceccvecrtveeette dd ccieagsciavoasiesasesesedssncavoots P7-13 
Maxuuxgts file ...cceccccccsccscsscsscsscessecccccscsscsscsesssssscescess .. P7-13 
Permissions file ......cccccccssssssssssccsesecesscescsssscscseseececes .. P7-11 


ROU Gc ccsvsvexevesvessnecesersieevsiathessssssecsoseessanscsstesneneuovdeveiees saeveacecsuacaoepesees P7-9 
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Sysfiles file ..c.cccccsssscsssccsssscseescecereseseseceees ... P7-12 


Systems File: sesvesvcesecssssecsoscsssosesonesuisvdsanessseaswevissseseeevexccacscciaccevceuseeewvave P7-7 
temporary data files . .. 7-28 
USCMCOMMANGS: asics csceses vesessavveesecrioxssteceteacszeonvseuswstesureeessOiosueskees cacsaciacoaise 7-2 


UUCP logins 0.0... ..ccesseseececceeseseeeceee .. P7-12 


WOLKTIIES: sacosscessepvescesscewevectseceeesceieceseussonsonisoace diiseveunsuseadousdacdoseesecsterex: 7-28 
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BIG TAC: xcs ssn sasseccesnuhscwaslscetessaves es cxsuceceseaceacetbece vreseattecmtummensumonesente ceccghe 6-1 
BIOCKS) sscsessvssseoxezavasvssesssseageennsoseacscatevesceususss sais sevisavesadseocsszantecvvaretveseeveestste 4-4 
Boot block .........ceceseeeeseeee 4-7 
Broadcast Messages ........sscscsssssesesessscsssscsescassececesssesecsscssscscassvacevavsaceves P2-11 
C 
CHATACEER BOGS sass ssvsssereceseseaveresstivesexsescectestesstsscediaacensiWiveavisicarceevonce@ers 5-14 
Check filesystems ......c.sccscccssscssscssssssesesesescscesenceeees ... 4-20 to 25; P4-3 
Classes scsvecvseesnvevestvesseecseisesnonecssanccaisssaesivnsasesesnide si vissesdshbesdiaenssarivecaceetcacen 5-25 

accept print requests ... «. 5-28,39 

delete from print Service ......c.ccsssscscssecssscesesssecescscscecesscssscsscacavecacececeeee 5-27 

TEJOCt PTINGIVEQUESES. ......cecesnessssserssessessasaasssosesveveordecavesaiwiewevesvistersieeacese 5-38 
Complete backups .......ccecesscecsesesscseeees .. 4-15; P4-6 
COnfBUte Printers: ssscecsicererercesesscarestecstssecinsssecconosvtekaceievsesassisvcdisevecdocieesies 5-6 
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CPIOWOMIMAN -o.5..scs0s ccvescsrpuelevseseintieanciasnd entree at 4-18 
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CYAGETS! sesssesesseccsssessssceiercerssvessadsnstsnsvensiedabeer he ortereeere tesco heen: 4-4 to 6 
D 
daemon login ...... 

Daemons, UUCP . 

Data blocks .......... 

Data files, UUCP 

date command. ..........cccessessssseseeseees seus 
Date, Set wccsastitin se casdssvnasiessassosucatscsssecevccavsssatesebevxscrs ete Becteanetemtnesnnets 
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SCtUP  ......esssssccerserees wee T-11 
Direct LIMKS) sstesesssisscssssicsicccscsocceseasoaressonassessuuacivecexsseseeatscssedeediavecswesteiver: 7-1,30 
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Disk drives 
DIOGKS  gasevevsiccssaessassseeswepcevesscacereterseesachacssccscascsooneeesscartnecseisaseetessoensssovenees 
cylinders ....... 
disk sectors ... 
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Disk sectors ... 
Disk usage .........esessssssessesesesescees 
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DUPHCALE DOCKS! sesessssvsssesensaceuveseccssssvecvivecsucevetedtessesteceuehiedaaceleixtecttinaact 
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/etc/fstab file ........ 
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[tol Broup Te: wcscecevescovcceeseussesesceceatseceeseea tee Peee ee IONE 2-5; A-2 
add group ..... sats 
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delete entry . P2-7 
list entries ........... . P2-9 
PELCT TAG CIVOCLONY - ssesseceecsncvsevseacecsueccovacessvaesctesecsoceeantets sreseeeratevieneneeess A-3 
/etc/inittab file ....... 3-8 to 10; 6-4; P7-5 
fete] Mord Ne: scsseescsctueaieesnnrinvenn ane N 2-10; A-4 
/etc/passwd file . 1-3; 2-2; A-4 
add user ......... we. P2-1 
CINATIQ ENTITY? <cssccccsssisiscesscessscicsdcseanscesacaeedsbacedvessesasaccasdeassadessseetesesaassesse P2-6 
delete user .... 2-4; P2-8 
ISTAUSOMS! Seevscsssesecsssy coveascedsuesaisasturvensasapeisveseruenieassesbisveerederiseesiere ees P2-10 
PASS WOT ARATIL? sccesecsccssceucautesvsssessvavices daussicvencobsssezavessdeseessuvecuesedssnssvasansates 1-3 
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ERC ECOG: ssccwssepeuseercsscetervansecvcesvsusivisoseuscuniestenscatearwivatierieriomdesveaveasesviries A-5 
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Jetc/1c2 file... . AS 


/etc/rc2.d directory ... 
/etc/save.d directory .. . 
fete /save.d [except File ........cc0ssscserrssssscessssscesasssassarssccssrssccsssceaceeseseceseesacs 4-17 
/etc/shadow file ............ . 1-3; 2-3; A-7 

BOG UBSCY sessessvsrccssecccseanvscesaecesssancsseaaceasswecestvascassrseaeeccacedsessssacseencecesseess P2-1 

delete user .... 2-4; P2-8 

PASS WON AGING? ccuscassecscostecsssontessontsieaseseasosssasvesesccedsasescesnaghervedsecteascansans 1-3 
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/ete/TIMEZONE file . 
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Execute files, VUCP wee 7-29 
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GOLCCe: sasccacavsisesisiccecaisctscavecctessenssentoncssiaessidenssarveasaanenceesascaczesessee® 5-48; P5-17 
TMOUME ....csecccececcccceccccreccccccsceccsssscsscsstccenenssssessecrsessenessnsssnsssscsesecsseceseseeres 5-49 
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lost+found directory . 4-25 
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G 
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IL-J-K 
Incremental backups ............cccsssccesescessscccesseccecssecsncecessscecvesscssvensoes 4-16; P4-8 
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SY SEOM: 2265scssensesiveseceedunstsxescoss'sess w. 1-8 
WUE” wescerewesceesizitesiesescaccocsocoeses .. P7-12 
lost+found GirectOry ....ccccccsccscssssscssecesccsscecsscsccsccsseacsccecsscsscsssscsesescecsuseessee 4-25 
MPS COMMANG) jacsoceccosisesseovcisneverevescveeusaseaeversesseracesaverster cies socssdcacacestesaaéenacna 5-42 
MOOR: cacscateicdcstcsersseweeed0 cvexsctuestevsesescevecvaseaveueseceayerecdeese teaser oeserreeeeaas 1-8 
Tpadmin command ........ccscsscssssesssssscscesescscssssecsesecsasscessacescscarsesssseene 5-7 to 27 
lpforms command ... ... 5-45 to 47 
IPStAtiCOMMan sssccissssescscsvevecsosrseveawercaccuskesetecnveteceneseerericctesiasidesaiace 5-30,48 
Ipuser command .......csscsssescsssesssssssscscssssscscscscscacacscsescecaceccevscsenssensacsesees 5-41 
M 
MAI DHOBTAMAS: ccsscscsccsivssescecsesiscsesnsecasssecsnvsnsennsesavineetateecccnanaestaiecveeets 2-12 
Maxuuscheds file .. 7-27; P7-13 
Maxuuxats file ....... 7-27; P7-13 
Message Of the day xcs csicescevenecsatescssvovsavvesscrewtavveteseeseesstsettsctarks isedesesiasasedese 2-10 
EU CASEY <P 0) 012s CC: (A P2-11 
Mount 
TICSYSEOMS: swsecesccceresvesreestcewiesseeibetesesasisbosawssbsaasvnaieosseivonosssdansssvease® 4-1; P4-2 
forms ......... ese «. 5-27,49 
print wheel or cartridge fort .........ccsccssssesssesessssesesseccsesssscecsssscessecsceees 5-27 
Mountpoint o.....cceecesesceseesereees w 41° 
Move printirequests ecesvsssssccvsvevesevcssvsessessasessteresssteisseacvessisceeatesossencoasesnceees 5-38 
Move print requests in QUeUE .........cccscesessesesesessseescsssscecsceceesssescsvecsusecaseces 5-42 
Multiuser mode ..........cccccssscecsssecsseccessccssscssesessessecesscccssecssceceee 3-6,7,8,10; P3-4 
N 


news command 
News facility .... 
Nodeiname sscnesscsvssczvencescevsaveses 

MUUCP ORIN, sistncissinteouicen en ndenonnaenehveni tients 
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Operating system 
FIPIMIWATC:TIOE: ........00ec0secoenseoesceisesendesscveavacsaseutesuaiaventeadscueneveanesaseass 3-7,14 
multiuser Mode ..........cceseeeeeeee ... 3-6,7,8; P3-4 
policies for changing run levels ..........csccssscssessscsecesessseecesseesseneeesteneeeases 3-1 
POWEP UP: ..scccsereeseverssovcasseseessoossess w. 3-10 
TODOOL swssvsceocsesaicssncecaxcsepasvescceveceesseersastectes . 3-7,14 
TOMOVE DOWER esseccesesssveseenevesescssucecavseeciaawiaceisssssctseeecevanyeezivsusesvesexiserseees 3-14 
run levels ...... 3-6 to 14 
BHU AOWIE scsscccsvccsecsvacsssadeisesensvessnosscessescearnncdsaonaendsa cepdsasanngeitarebecaeene tees P3-1 
SIN Ple-USer MOE xcssssivevssensesssereccsseswsaweancavscssosesceseesessssveacsenss 3-6,7,13; P3-3 
Pp 
Partitions ssicccesseccousececevereeceecsees sseeezcanctexevecdcovcussesenccnensscsassavseeaseemetivesiacioaenss 4-2 
PASSMEME COMMANA .........ceeccsrssccsscosscsccsscsssscccsresecescenccesesssesnessasensseasios 2-4 
PASSWA COMMANA .......ecesessscscsessceesesceceensesseessesneeseeeneceecenseneseseesaseasessesenses 2-4 
Password aging ........ 1-2 to 6 
Jetc [passwd File ....csesccsssssensesccccesesecccssssccsncscsecssesessesecesnesssesasscssssonsensses 1-3 
/etc/shadow file .. a 13 
PASSWOTKS .oscsscsessssscssconcversoncecessscsscoecssccsesssascncsscssacoscesoccsasensnnesssecsansassceasecse 2-2 
administrative logins ..........:sssseseseeeeee 1-7; P1-5 
RING c.cccasccsacsctveantieertninievner enone 1-2 to 6 
CHANGE ..sscccsossscssersccverracccsnsccnscsocevscnccsnsscsscascorscssassensnscssssssassssesacssssccoecoses 2-4 
system logins .... P1-6 
P@PTHISBIONS FS: .cascssossuessasaccantaxscuxsseesevvcaenavesssesseasedseresnssseseestaeneessaisasteates 7-6 
Add entries! ssscscsvscsceccasscecsssecessvssossesseenees . P7-11 
LOGNAME entry .... 7-18 
MACHINE entry .... wee 1-18 
BOLUP ...cesccccescecsseesiss ssareseaasacesessccsarecsuvusrecesssccaseaseaessanensssensssacaassceacesseoss 7-18 
Permissions, default modes ..........cssssscccsscsestecesesesresesssceseeeseeeseneesserersessneees 2-8 
Poll fle. scsscsissvesscavsnssseonassesasccczsasssaxsssensedacaevcasdacsascscssctscsncscsecnasssesaessssensveses 1-6 
Add entries ... we. PT-9 
SOCUP: ..isccascessesccsss wee 1-25 
Poll remote systems wee 7-25 
Ports; printer’ wisscsissecsscsesseveacen we 5-13 
Power down operating system ... P3-1 
Power up operating system .... 3-10 
Preen filesystems ...........0+00 wee 4-20 
PRIN GUEME. sssscasescsssececsiuctigssstousocadscssaccncsvensecachscesdseseanecsansaescdsineassanseaas 5-41,42 
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Print requests 
ACCEPE ...csccsecccscceesceereesesescnecenssecseesrsessenseneesnserseeesseessesesenseeers 5-28,39; P5-5 
DANNY PAGE: ccevesscsevecszcessessesstiseassesvsxsasseessenenceessses . 5-23 
change priority ... . 5-43 
MOVE IN QUEUE ....cceeeeeevee wee 5-42 


Move to amother printer .........::ccsessscesssseessseeerseeees we 5-88 
Put ON Old .........cececcecscsscscsesscsscesessncsssseassscesecsoes wee 5°43 
reject: ......... we 5-88 
Print SETVICE ......cccccsssrcssscccccssnrerescccccsssccresseseesnsscsssssceessscesenacsssasascosccesoosesers 5-1 
CLASSES: ....-cercccossecoassssesvssvcseceverascerecssourccssssossonsanssoeseneesassscesersssseaccnsossosess 5-25 
COMINTATIGS) sexevsscepsssesissecssnansacevsesseayeacavveaseervesiecceeoes coacesnacnssccasseosssasseseseeeee 5-2 
Default destination . . 5-26; P5-5 
EGTSE seccescccesacocseassesocewadesucn rstedsaassazacsubesenseseerensensemrensoecemmaecereaias P5-18 to 22 
FOTINS cercoosccssassensndenscsseess . 5-45 to 50; P5-11 to 17 
Interface PFOBTAM ......ecsecceccssesssesesesseeseeesesseseceessscsaseseseaeeseessacensersnseeseeses 5-9 
PINE TEQUESES ......eessesereerseeeereenretsestceesseascseressssentenseentesssnrerseetsaraeersees 5-42 
printers . 5-6 to 28; P5-3 
SECU .o.ccsccescescssesereveecessceeseseseeenseseeenecseesecesecseeesssassessseeesensessensneaseneetsas® P5-3 
Start: vevcvsevssscsseccese 5-5; P5-2 


status information ........cccseccssssecescssesseecsssssceosseeeeseesecsnaseesenaeseensesenseeees 5-30 
SCOP! svecssassscecsnseienaesaonsdacesensccovvecsnsteserusacseeesy w. 5-4; P5-1 
troubleshooting .. 5-32 to 37 
Print specifications ........ssssssssscssesesessecesessesesseeeseensesesssnsssenesasseeeesenenenees 5-24 


Print wheels ........... wie 5-14 

Printers ......eeeeeeeeees 
accept print remuests eaugisayiee ord ve sewus scvesezeseseses 5-28,39; P5-5 
Add FOILS .....cescescsesersesssssnsscscrsescesscscsccessscesscessecssseeessessneessessnrsesese 5-45 to 47 
AA, tO CLASS ..ccccssssscccececssssrecccecsessssscesecersesseeeceecsenseeeeseseesneaesonsssenneeeseees 5-26 
Add to Print SEFVICE ......cssesseesseseeeenececesceesenenseseessessseeteeseeeseeanenes 5-7; P5-3 
AlCTES .o...sescsssesseccsscecscccssesssccseceeescecsssecsnessnesssensneersesssasenssenneansnens 5-16,20,49 
Change configuration .......sscscsressceccesereeseseesnsesssnessessensessesasessssseeneesees P5-6 
character sets .........00 we 5-14 
CIASECS ccvceccescesssedeessscessersvarsasesvessssnacscsseasaacisorsesesssssevensaseanesssceesseacssconees 5-25 
CONFIZUTALION .....---sscsecesssesstsnessnessseneeneensecnecneenecanecneenensssssenecsessssesscaseaatens 5-6 
connection method . wa 5-7 
CONTENE tyPC .....sseceecrccessereeenreeetesreeseens . 5-11 
default destination ...........ccsccseesseereeees . 5-26 
delete form definition .........::cscscsssssssccessessecsreseseceseesseessesesssenereecsenentens 5-48 
delete from print service . 5-27; P5-10 
GeSCription ......sesseseecssessssssssereceeesesecsceceneserecenaeensacscsenseseneeeessesessaseneasees 5-23 
disable ....... 
NADIE? cecesecte cescewscsevevedeszcesaccctaisaseacapsesvesss deus vs iscatsosUeisasenesaccessneeases 
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PAUUGS) wcccvarvecsesssccittstesecssisensessaseunencvesavvsaveuneaxvssearseeseavicecieneraeeesiees 5-20 to 22 
HOME CATLEIARES sccscecesvesesevercceesestecceaciciecseosscesaensdccorcasatedeunsesceversiceusvecesses 5-14 
RODS 5c: sacs: uestedeuestec cress ecaeesaesd iacexesvesesseeevernecesastearleinonserts acca 5-19 


interface program .........c.008 . 5-9 
mount form or print wheel .... 5-27 
NAMES. 00. 00s ccessisnseasvavesssuszverssyescusvesstosees . 5-7 
port characteristics ........cccseseeeeee 5-13 
print specifications . 5-24 
PTING Wheel S) ceecesesssevsoweevtseptasdecrasissssescassesesaccessevsadecieuede 5-14 
PUOMItY EVEL) sisccsvesssesscssiyeavreentecenastrereettenereeecessscises 5-41 
priority limit . .. 5-41 
GQUIGUINGY reenepercravevetcssadscasepoacacecsagesessusvaveysdeucsevevavecets0deesjeaceversbseesssvesecouess 5-41,42 
Teject Print TeQUeStS .........ccssssssscssesssescssescessecscsscecsscssecsacacersarsscsesececs 5-38 
SCACUSHMTOTMAGION: ss scxscosessecevcvaceasusducceseuscuccucedsemdevstaveeissiessesccaessechecsiease 5-30 
troubleshooting .... . 5-32 to 37 
GYDC  seersssscsssserecssacservensessss 5-10 
Usevasilopin terminal ssscssssossseseesescscescensecsxsevsieesdssccciesicsensvscsacscacsavesoszors 5-8 
use Over & Modem Or NEtWOTK .......cssssssecsssessecsccsessersecceccsscaccascaccaseaseaeees 5-8 
users allowed AcceSS .......scssssecessesssseseeerece .. 5-22 
Priority level .......ccsscesesssescsscsesssscsscsecsscsseaees 5-41,43 
PHOPity, LIMIE. ccsccapsanciveceesesivacerssenvesoesiascors vient wieweesssciesiasessasaneoesaccsvaci saves 5-41 
Profiles 
MISOL: Besetetceitessassssnssassacasvosedesssevsssveaewesrendveaveveevevevedaveeuesenenstaatsverset eee 2-8 
Protocol; devices’ ssscssisssvsssestvsivessisussacoscssensawseceeecessvcesecsessconesausdesontcncavesirate 7-11 
Q-R 
Queue sprinter’ sessiscsscaseancesosseresssetisetsedeanciasscerstnscoseeseoveucousaueancsutsevasevexevced 
Reboot .......csccesccesseseseeeee 


reject command 
Remote systems 
add to basic networking 


(211 | UAE ROP OO Te ne eR 7-25 
remote.unknown file . wae 7-27; PT-13 
Restore from backup .......cscsssssssssssssssssesseccecssscescsssaccecesssaseaseacencese 4-18; P4-12 
Restricted Shell sescsscsscsvevevsssscssiccssieccscesessesonesconavessanees ieviesdeasescseecsisusdovars¥ents 2-9 
root filesystem .... 3-3; 4-1; A-1 
POOU OPM ssss5se8 0s cesss cic len acesteacspatesseasienietceaen tne rome ween ee 1-8 
Ruin levels: sesssasscedss.sscsacsasesictasencsacsudst casdecsasesssaceitesssdsvccrcascesvecsanecs 3-1,6 to 14 

CHANBE: sessussvsnsiensueszccvesessanasveesseeassescseteciiecstouanesescansaetensvedtosieccezivcsdesedetses 3-12 

firmware mode .. . 3-7,14 

multiuser mode .. sbacedesataesduussSuszaiteccussuacceussuearserenwes 3-6,7,8 
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PODOOU: ccdescseveredevensgyeveievectecmnenseeveninsetenverars eerie eens csastesdinialisia 
single-user mode 


Ss 
Schedule reminders, backup .......scsssccsssssssssssssssesesssssscsssesececscacseseseseececs P4-14 
SOCuriliy: sscerscscescevesesczscinssascssoscsnoousesavetensuassiessssovucscvasaveessevesesceuesd scavescacesceees 1-1 
Set time and date . Pl-1 
SHEL PLOBEAND case sdacecvaacescvessyeissieicesesavsrvecesaevessemaneettesreverae eh osscebedase veer 2°83 
TESETICESCYSHEN: 25. c.:cssess ssosesscaswnsssvesvevssssscevncvsvssavecevestnseeteesseesroeied xreetoerets 2-9 
shutdown command .. 3-14; P3-1,3 
Single-user mode .......... 3-6,7,13; P3-3 
Start print Service ........cccsccsscsscsssscssssecescssescsccecsacescsscsessessessccessverseene 5-5; P5-2 
SCALP AES: ic. .s0scscsesseceseaeesce-snesonsnsiesiaasesescosscerssuresnsvscssvealassevesaavicaisessisceses 2-7 
system ....... we 2-7 
MASOE’ sascenssocceiunssnesessenssusevonuieseseeadesveevsvuxtseeaessesansnseccacescessesonsocscsecoeesebereeeees 2-8 
Stop print service ....0........ 5-4; P5-1 
SEEY COMMA ..ecsscvessevcesocceesssisonsosssoscessectasdsncvsavsacessnveseeinestsicenesstsveesseneesss 6-6 
su command .... .. 1-2 
Super blOocks . sossvssssscccsccszssavscuvvessesevassVeiaseisessescxessvncsvecsoosavereconeneasstaacseeiaeiveiusee 4-7 
CHIOCKS sis sdasseaseasevicewech toanewist teas Gevervesscctuciveuasetuaceenrarmaecemse series dddnisesdests 4-22 
sync command 4-19 
SYS LORIN | eaccereveceversesyassssccssssonasecanonsvésnendevsncersevare sveucassavouecetstevevsesveceeveevssueve 1-8 
SYSLOG) sss sccwsevcaveeswcswesuusvssvninesdctektay eteeweisseisaédsdessicizsancacebsson’ 7-6,26; P7-12 
PS VSEST NOR! is sscenssvachussiveedasenvass costarsieacyecets scenarsosseenactetacterebensrameeeorinreaiicaees 3-2 
System logins ... 1-8; P1-6 
System mame? sssscesssevesscvsseservestesizssiosssecesssasvsscetecessasassoonsensesseatacueneseadessoess P1-3 
SH SEEMS THLE: sevesscsessevecereeceeteervarcacenavsavsasaurerereeaeteat tae ivesasssididheacandidicaséarivisse 7-5 
add remote systems .........scssssssecesessssssssetsssteeseeees we PT-7 
escape characters .. vee 7-17 
SOCUD) warsveresesecctivavessciecdessassasscsscasccancesdnasetesanasedcrdoud ace asvsavecusdsscavosyeseseeseal 7-14 
T 
Temporary data files, UUCP ou........sccscsssssessssessssscssescsscscsassacscessesesacaccacees 7-28 
Terminals 
ACSF COMMBULALON so cccseenscesuvecsisceseveustaxusdisemecxaverscecsreeersertenmisRbsaeseccies 6-4 
options .......... . 6-6 
SPOCHY EYE sevcsccsiveccstzceasistsacaacanisvcicancecsscassosasiacdcanaeceddsied dedveeseesicesenasers 6-5 
PIMC; (BOE: seescuadsasectes caves des Gecboessducetecscrcremasesencourstauertasicssiasisasessetsebieat Pi-1 
Tracks .......ccsccseeeee seevaaveuiese 4-4 
PETOUDIC FOPOLLIAR s.usscacvectseaseudiecavesvsciedadactseasvshucsavuscusetedeutendgeteetee eats 2-12 
Operations Guide: sysadm Index-11 


1003-48607-00 


POLY SY SUCIM, -cosdcvcsauvoes cvetstisuevdoesteatbactevciseseonseecucdssunsibsinseceshessiaicsannsesauacencoases 6-2 


UNE SEQUENCE: s...cicicescessnoescosoncescsteessestaceeceesseeveuseutemesersenteneucseveessar eases P6-4 
VIN. cressesetueesresivevectenssseees et astecesesenserassensssaaseamareremtearsasisesonnivenesensess 6-1 
line settings 0.0... P6-1 to 7 
modify line characteristicS ...........ccssssccssssecssecseeceeseseaeveesssersesseescesaseesenee 6-4 


OLE) cesevevcsssvcasvesvsvesesvassaaeesseessanesavevenscentdveasevesennaconesonsencsanannsperionvereds satus’ 6-1 
U 
VWIMASKE COMMANG, xcccressvcascaccevecessesazeesvsseciaubeasesvncecess vesnsessarsissvascesearsaessssens 2-8 
uname command ....... P1-4 
Unmount filesystems . P4-2 
User account .. wa 2-2 
G00. seis we. P2-1 


CHANGE CNURY* cscccececurcecaieswsrssksouecsss cer scecscevveswacsassesed canes desscsesevessseusasuseeeen P2-6 
COlGUS) <sesvascesvesssutcavessseusackuadcaveecsassescessedeseevexe 2-4; P2-8 
LiSthy sivscssvosssessesccoasacoavessaeeseesseconeasvesverscastsxtaeerts .. P2-10 
DD. swipescecseseesrresseaorevesrvevecressacscecesaavsvestssaacesserssecesinnsacd ase aaassssspieecasageiaset9 2-2 
Users 
disk usage 
BOTARD: scsecnsssodanstoutadcasaanniesscennnanaaadauawenessainwsvarseisunanianswaexsexseanivn 
/usr/adm/sulog file ..... as 
/usr/lib/cron/log file .........s00++ .. AY 
Jusr[lib/help/HELPLOG file ........scccssscsssscsssscsesceeesesseccesscsensseeseeseneeeeseers A-9 
Jusr/lib/spell/spellhist file .......sssscssessssecessscsccesceccssssesssseesceseseseaseeensees A-9 
fusriinews Airectory: cescssasccercecassvscousavcassessexssacsuseis see tersssvieaansiseossessieusseisess A-9 
/usr/spool/cron/crontabs directory A-10 
uucheck program ..... 7-4 
uucico daemon ......... wee 1-4 
WUUCIEAMUP PLOPTAM ...ccccesscssssresessosesssccecsscercccecessacecrccesenccceccsassssssansscssenees 1-3 
UUCP 
administrative prograMS ...........sccssessssssesseeees we 1-8 
GACMONS .........sseceeseseeeees wee TH4 
ata les) scesccccevcccdscecevesavaseescantsveccsuersessasssesaseussvacncesdesensidacectseevinsiesaars 7-29 
GODUSRING assssicccessccsssascscsasesesensscacedsassesseasbncdsonsasesosavsoraseseetessaeaessnese=e P7-18 
DOUGCONAB ENE: coscscsccccccsesuncnseavserssvesessasconntohoancccasoentadealeseveseveseiucteosesteest P7-11 
DCUICOS ENG: jac ccs scaciteseosacsarssczancccustoteseseteuss vesuateaseactiscesecstcseswassvouneeasseesind P7-3 
irect inks » srsvescssseswcsstevesecsects cee sveccevuccsssessees eassessseustesesgnaasesnsedscsassstaceses 7-30 
OXECULC AICS! cs saxessevecvertvcsstecstescvsisdavnstecscsseydesncsessesdesstestesssoeces svadeZeSeenesec 7-29 
file setup ...... P7-1 to 12 
MOCK GOS: se ccvicaseccssescelowceosnnsec-desceeeen cavsessnonessncesdesteseuseensduaseseucseteeneeeas 7-28 
Og files: — cs secezecessensodesesevesscacesecncecacosscctucencessbeascsesasasarasses castes ccusseqesesoves™ P7-17 
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Logins ..e.escssesesseccseecesesceessescesssscesscseesesesnenesceacsesssaeacesessseeesseserasenseesasees P7-12 
maintenance ....... . PT7-14 
Maxuuscheds file . P7-13 
Maxuuxgts file ....cecccccceseseesssessccensessesesneeesnsesacesneevecsensesessssnrsvascesesensees P7-13 
Permissions file .........secscsccsssessssssceecsseesscscsseccssssecccecessnssearecersssessarorer P7-11 
Poll file .......cesceeceeee ... PT-9 


remote.unknown file ........... . P7-13 
Sysfiles file .....sssesesssesseneeeee .. P7-12 
Systems file... wee PT-T 


temporary data files . 7-28 

USEF COMMAMAS. .......ccesecessesseceecceseseesecssresesnensseeseees we 1-2 

WOPKERIES: ccccececssessessersetersecestsensecsoasesaveresonsesonsennesta . 1-28 
uucp command we 1-2 
UUCP Login oe sccsseeeeeeseeeseeseeees 18 
uudemon.admin shell Script .........cccscsssssesessseeseeeeeeseeesesenones . P7-15 
uudemon.cleanup shell Script ......sscsscsseeseereereeeeesseeneeeeenes . P7-16 
uudemon.hour shell script ..... . P7-15 
uudemon.poll shell script .... .. P7-14 
UUGetty PTOZTAM oo... ccssscccsscseeressesrescesceeereeseceanscensrecasesenserensesesserecesaanasenees 7-5 
UULOPF PLOPTAM ...ssesscsscesessesseecesessesrsseeesseesneasesssasenssssaseeeasensesenseenenenens we 1-8 
uupick command .. wae 1-8 
UUSChE” daeMon ........cescssccescescesescnsescccssenecsseeseeeseneeseessseaestersessesersssessanenss 7-5 
uustat command .......sescsseseeereeeees .. 7-3; P7-15 
UWUUEO COMMANA ..s..cccssseccesssseceesscccsssrecccssccessssscesecsceesseeeesteeeesnseeesssessceeesooerees 1-2 
Uutry program .. we 14 
UKE daCMON o....seessessesssssssssesseeseeeessseacenenaceesetsenessssnseesseeseeseesessaseeanensenees 7-4 
V-W-X-Y-Z 
Variable, environment ........sssscssscssessessessesecessescesseeecncsensseessssersensesaeennsorees 


VTOC (volume table of contents) 
wall command ........cssessessseeeeeeeees 
Work files, UUCP ........ssssssssscssssesesesessscssenssenerscenseersressseusansseneasenenenenenenes 
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